On 2021-11-22 10:26 a.m., Grant Taylor via mailop wrote:
I've long wondered about malicious ISPs intercepting ~> hijacking
outbound DNS queries
Yeah, yeah, that was what all the DoH proponents *cough*
(Google/CloudFlare) kept trying to scare everyone with, but love to hear
about those 'malicious' ISP's.
Thing is, anyone on the ISP network, is already a customer, and
generally a more 'trusted' relationship, because the pay the ISP.
And what is that saying, about getting something for 'free'?
Don't get me wrong, there were a couple of companies that were running
around paying ISP's to 'operate' their DNS servers for them, so they
could collect data.. but normally they target the larger operations.
And those larger ISP's are already selling data, eg your mobile
location, and other details, so I get the public perception that they
aren't your friends, but 99% of the ISP's we do business with don't do
anything with DNS queries, except when asked by law enforcement, or to
lock down recursive queries to only their networks.
But 'malicious'? Injecting/hijacking queries? Maybe in other parts of
the world, where they have government oversight/restrictions, but no
normal ISP could get away for that for very long.
And frankly, using your ISP DNS servers (or your own) offers MORE
privacy, eg you can't associate query data with an individual very easily.
-- Michael --
DoH is even more scary, in that it is more directly linked to the
user/device that makes the query. Not too hard for the 'big data
aggregators' to correlate DNS queries to other triggering PPI.
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
