On 15/03/2019, 07:45, "Doh on behalf of Paul Vixie" <[email protected] on
behalf of [email protected]> wrote:
DoH's stated goals include "prevent on-path interference in DNS
operations." i
am an on-path interferer, and "i aim to misbehave"[1]. DoH is, in that
sense,
targeted at me. i think it was wrong to do so, not morally wrong, but wrong
on
its own terms, to falsely equate all on-path interferers. parental controls
and corporate security are forms of on-path interference in DNS operations
which have a valid and moral place in our digital society. DoH could have
distinguished between edge network operators who interfere for reasons our
users and their apps are either cooperative with or unwelcome entirely. they
did not. they lumped us all together.
I might also note that the outcome of blocking such 'interference' will
likely increase the chance of successful data exfiltration by the 'unwelcome'.
Thus in fact this "privacy" protocol may one day be shown to reduce overall
privacy and security for the majority of users due to yet more data leaks.
Alister Winfield
Information in this email including any attachments may be privileged,
confidential and is intended exclusively for the addressee. The views expressed
may not be official policy, but the personal views of the originator. If you
have received it in error, please notify the sender by return e-mail and delete
it from your system. You should not reproduce, distribute, store, retransmit,
use or disclose its contents to anyone. Please note we reserve the right to
monitor all e-mail communication through our internal and external networks.
SKY and the SKY marks are trademarks of Sky Limited and Sky International AG
and are used under licence.
Sky UK Limited (Registration No. 2906991), Sky-In-Home Service Limited
(Registration No. 2067075), Sky Subscribers Services Limited (Registration No.
2340150) and Sky CP Limited (Registration No. 9513259) are direct or indirect
subsidiaries of Sky Limited (Registration No. 2247735). All of the companies
mentioned in this paragraph are incorporated in England and Wales and share the
same registered office at Grant Way, Isleworth, Middlesex TW7 5QD
_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop
