Re: Trusted Recursive Resolver Policy in India

2019-11-21 Thread Wayne Thayer via dev-security-policy
The only update I can provide at this time is that we're working on it.

On Thu, Nov 21, 2019 at 10:08 AM rich.salz--- via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:

> On Saturday, September 14, 2019 at 7:04:11 AM UTC+8, Wayne Thayer wrote:
> > Rich: I want to acknowledge your question, which I think is really "what
> is
> > the right forum for Mozilla TRR (DNS over HTTPS) policy [1]
> discussions?" I
> > don't currently have an answer for you, but will respond when I do.
>
> Any update?
> ___
> dev-security-policy mailing list
> dev-security-policy@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-security-policy
>
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy


Re: Trusted Recursive Resolver Policy in India

2019-11-21 Thread rich.salz--- via dev-security-policy
On Saturday, September 14, 2019 at 7:04:11 AM UTC+8, Wayne Thayer wrote:
> Rich: I want to acknowledge your question, which I think is really "what is
> the right forum for Mozilla TRR (DNS over HTTPS) policy [1] discussions?" I
> don't currently have an answer for you, but will respond when I do.

Any update?
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy


Re: Trusted Recursive Resolver Policy in India

2019-09-13 Thread Wayne Thayer via dev-security-policy
Rich: I want to acknowledge your question, which I think is really "what is
the right forum for Mozilla TRR (DNS over HTTPS) policy [1] discussions?" I
don't currently have an answer for you, but will respond when I do.

- Wayne

[1] https://wiki.mozilla.org/Security/DOH-resolver-policy

On Wed, Sep 11, 2019 at 11:39 AM rich.salz--- via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:

> Is this list the right place to discuss the TRR policy?
> If so, could the wiki page on the policy be updated to point to it?
> ___
> dev-security-policy mailing list
> dev-security-policy@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-security-policy
>
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy


Re: Trusted Recursive Resolver Policy in India

2019-09-11 Thread rich.salz--- via dev-security-policy
Is this list the right place to discuss the TRR policy?
If so, could the wiki page on the policy be updated to point to it?
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy


Re: Trusted Recursive Resolver Policy in India

2019-05-14 Thread Wayne Thayer via dev-security-policy
On Sun, May 12, 2019 at 9:59 AM Nemo via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:

> Hi,
>
> I've been running a public DNSCrypt resolver[0] for the last 2 years,
> and would like to start a DoH resolver as well. I went through the
> DoH-Resolver-Policy page[1] and have setup a Draft Policy for my
> resolver that is based on it[2].
>
> India specifically, has a lot of Internet Blocks implemented
> haphazardly[3], and I believe that a resolver under Indian jurisdiction
> will help with some of these issues. Right now the blocks are all
> implemented by ISPs as per secret court orders, and we are reliant upon
> user reports to figure out which ISP has blocked what. Most of these
> blocks are implemented on the DNS Level, so DoH has a chance of fixing
> the gap.
>
> Running a independent resolver in the Indian jurisdiction would give us
> a way to challenge blocks in court, and maintain a log of these.
>
> I tried searching online, but could not find the process for getting a
> resolver added to the program. Appreciate any help on the same.
>
> You are correct that Mozilla has not yet published an application process
for DNS over HTTPS Trusted Recursive Resolvers that meet the Mozilla policy
requirements, but I am working on an answer for your specific request.
Meanwhile, it's relatively easy to configure a TRR in Firefox by going to
Preferences, scrolling to the Network Settings section and selecting
"Settings...", then selecting "Enable DNS over HTTPS".

- Wayne
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy


Trusted Recursive Resolver Policy in India

2019-05-12 Thread Nemo via dev-security-policy

Hi,

I've been running a public DNSCrypt resolver[0] for the last 2 years, 
and would like to start a DoH resolver as well. I went through the 
DoH-Resolver-Policy page[1] and have setup a Draft Policy for my 
resolver that is based on it[2].


India specifically, has a lot of Internet Blocks implemented 
haphazardly[3], and I believe that a resolver under Indian jurisdiction 
will help with some of these issues. Right now the blocks are all 
implemented by ISPs as per secret court orders, and we are reliant upon 
user reports to figure out which ISP has blocked what. Most of these 
blocks are implemented on the DNS Level, so DoH has a chance of fixing 
the gap.


Running a independent resolver in the Indian jurisdiction would give us 
a way to challenge blocks in court, and maintain a log of these.


I tried searching online, but could not find the process for getting a 
resolver added to the program. Appreciate any help on the same.


--
Nemo


[0]: https://captnemo.in/dnscrypt/
[1]: https://wiki.mozilla.org/Security/DOH-resolver-policy
[2]: https://captnemo.in/dns/privacy/
[3]: https://internetfreedom.in/issues-censorship/
___
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy