hi all,
saw an open item in the tor projects, about dns and other resource
record types. this got me thinking about
just trying to understand Tor and DNS.
for what I gather so far, is Tor and dns is only about "a" records and
quad records "", thats pretty much it.
i think PTR also but
On 03/10/2012 03:22 PM, Ondrej Mikle wrote:
The draft is here (full text pasted at the end of this mail):
https://github.com/hiviah/torspec/blob/master/proposals/ideas/xxx-dns-dnssec.txt
Just a quick fix, I've noticed I have two sections named Implementation notes.
s/9. Implementation
On 7 feb 2012, at 22:08, Ondrej Mikle wrote:
1. full packet might leak identifying information about OS or resolver used,
quoting Nick:
There are parts of a DNS packet that we wouldn't want
to have the Tor client make up. For example, DNS transaction IDs
would need to avoid collisions.
On 02/09/2012 12:24 AM, Jacob Appelbaum wrote:
On 02/08/2012 11:47 PM, Ondrej Mikle wrote:
On 02/08/2012 02:59 AM, Nick Mathewson wrote:
On Tue, Feb 7, 2012 at 7:33 PM, Ondrej Mikle ondrej.mi...@gmail.com wrote:
I think if we want an extra field in the future, we want to put it
after the end
On 02/09/2012 10:58 PM, Ondrej Mikle wrote:
On 02/09/2012 12:24 AM, Jacob Appelbaum wrote:
On 02/08/2012 11:47 PM, Ondrej Mikle wrote:
On 02/08/2012 02:59 AM, Nick Mathewson wrote:
On Tue, Feb 7, 2012 at 7:33 PM, Ondrej Mikle ondrej.mi...@gmail.com
wrote:
I think if we want an extra field
On 02/08/2012 02:59 AM, Nick Mathewson wrote:
On Tue, Feb 7, 2012 at 7:33 PM, Ondrej Mikle ondrej.mi...@gmail.com wrote:
I think if we want an extra field in the future, we want to put it
after the end of the response (that is, after total_len), rather than
having it be optionally in every
Ondrej,
I may have missed parts of the previous discussion, but why are you not
encapsulating the whole DNS request from the client? Various flags and other
options (e.g. EDNS0) would be quite useful to be able to transport across the
TOR network.
jakob
about DNS internals.
Ondrej
___
tor-dev mailing list
tor-dev@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev
On 02/07/2012 07:18 PM, Nick Mathewson wrote:
On Sat, Feb 4, 2012 at 10:38 PM, Ondrej Mikle ondrej.mi...@gmail.com wrote:
First draft is ready here:
https://github.com/hiviah/torspec/blob/master/proposals/ideas/xxx-dns-dnssec.txt
Some initial comments:
DNS_BEGIN payload:
RR type
On 01/31/2012 03:29 PM, Nick Mathewson wrote:
On Tue, Jan 31, 2012 at 6:20 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
On 01/31/2012 06:42 AM, Nick Mathewson wrote:
On Tue, Jan 31, 2012 at 1:08 AM, Jacob Appelbaum ja...@appelbaum.net
wrote:
I think that seems OK. I think the first step
On Tue, Jan 31, 2012 at 1:08 AM, Jacob Appelbaum ja...@appelbaum.net wrote:
I think that seems OK. I think the first step is a proposal,
Anybody volunteering for this, or should I throw it on my pile?
___
tor-dev mailing list
On Tue, Jan 31, 2012 at 4:22 PM, Ondrej Mikle ondrej.mi...@gmail.com wrote:
On 01/31/2012 03:42 PM, Nick Mathewson wrote:
On Tue, Jan 31, 2012 at 1:08 AM, Jacob Appelbaum ja...@appelbaum.net wrote:
I think that seems OK. I think the first step is a proposal,
Anybody volunteering for this, or
On 01/31/2012 06:42 AM, Nick Mathewson wrote:
On Tue, Jan 31, 2012 at 1:08 AM, Jacob Appelbaum ja...@appelbaum.net wrote:
I think that seems OK. I think the first step is a proposal,
Anybody volunteering for this, or should I throw it on my pile?
I think it might make sense for you, me and
On 01/30/2012 07:59 AM, Roger Dingledine wrote:
On Thu, Jan 19, 2012 at 05:13:19PM -0500, Nick Mathewson wrote:
But I think the right design is probably something like allowing
clients to request more DNS info via exit nodes' nameservers, and get
more info back. We should think of ways to do
On 01/30/2012 11:18 AM, Jacob Appelbaum wrote:
On 01/30/2012 01:09 AM, Christian Grothoff wrote:
In summary, I think begin_dns is a good idea, but I'm not sure you need
to then talk TCP to the nameserver -- UDP ought to suffice.
I think begin_dns is a good idea as well.
Seconded, I also
On 01/30/2012 06:07 PM, Ondrej Mikle wrote:
On 01/30/2012 11:18 AM, Jacob Appelbaum wrote:
On 01/30/2012 01:09 AM, Christian Grothoff wrote:
In summary, I think begin_dns is a good idea, but I'm not sure you need
to then talk TCP to the nameserver -- UDP ought to suffice.
I think begin_dns
Hi,
Ondrej Mikle wrote (21 Jan 2012 01:47:56 GMT) :
So far I've seen ttdnsd used only in Tails, TorDNSd was seen
mentioned only in the Tor mailing lists (not sure how many
individuals may be using it though).
ttdnsd: kind of works, unless validation is required (ttdnsd fails
as unbound
On 01/19/2012 11:13 PM, Nick Mathewson wrote:
On Thu, Jan 19, 2012 at 7:39 AM, Linus Nordberg li...@nordberg.se wrote:
Hi,
After some interesting discussions irl last week with knowledgeable DNS
and security people (hi Jakob) I'd like to hear from people involved
with DNS in Tor what current
this, partly because future IPv6 work will depend on changes to our DNS
system.
Thanks,
Linus
___
tor-dev mailing list
tor-dev@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev
19 matches
Mail list logo
