zlacker

[parent] [thread] 6 comments
1. akerl_+(OP)[view] [source] 2019-05-04 19:54:49
The full IP of the Cloudflare resolver doing the recursive resolution is already provided to the authoritative server, as the source IP for the DNS query traffic.
replies(1): >>shawnz+L
2. shawnz+L[view] [source] 2019-05-04 20:01:25
>>akerl_+(OP)
I think the parent is saying, why not spoof the EDNS client subnet information?
replies(1): >>akerl_+D5
◧◩
3. akerl_+D5[view] [source] [discussion] 2019-05-04 20:39:47
>>shawnz+L
True. Copying the information would be possible, but given they’re working on other efforts to replace the functionality of EDNS ECS in a standard way, it seems like a hacky bandaid.
replies(2): >>maniga+zc >>zamada+Ec
◧◩◪
4. maniga+zc[view] [source] [discussion] 2019-05-04 22:03:07
>>akerl_+D5
EDNS is a working system today, doesn't seem that hacky to use it until a new system is actually ready (which doesn't seem to be anytime soon anyway).
replies(1): >>slenk+Pj
◧◩◪
5. zamada+Ec[view] [source] [discussion] 2019-05-04 22:04:52
>>akerl_+D5
Is there anywhere I can learn about these ongoing efforts to replace EDNS?
◧◩◪◨
6. slenk+Pj[view] [source] [discussion] 2019-05-04 23:42:07
>>maniga+zc
It works if you don't care about privacy
replies(1): >>maniga+As
◧◩◪◨⬒
7. maniga+As[view] [source] [discussion] 2019-05-05 02:07:13
>>slenk+Pj
The suggestion was to use the EDNS of the datacenter server, how does that ruin privacy?
[go to top]