[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Tor and DNS

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Tor and DNS
From: intrigeri <intrigeri@xxxxxxxx>
Date: Sat, 21 Jan 2012 15:27:58 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 21 Jan 2012 09:28:30 -0500
In-reply-to: <4F1A194C.60605@xxxxxxxxx> (Ondrej Mikle's message of "Sat, 21 Jan 2012 02:47:56 +0100")
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for discussion by the developers of Tor." <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <yszobtzn9xf.fsf@xxxxxxxxxxx> <CAKDKvuwXuTp8Ejb7F-HTx9uYv61xHTR1S2xvD95WS2dVJyuifA@xxxxxxxxxxxxxx> <4F1A194C.60605@xxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Roundcube Webmail/0.5.1

Hi,

Ondrej Mikle wrote (21 Jan 2012 01:47:56 GMT) :
> So far I've seen ttdnsd used only in Tails, TorDNSd was seen
> mentioned only in the Tor mailing lists (not sure how many
> individuals may be using it though).

> ttdnsd: kind of works, unless validation is required (ttdnsd fails
> as unbound forwarder, most likely because of not handling DS queries
> correctly)

> It seems that bunch of people who experimented with DNS over Tor
> came to conclusion that using existing caching resolver like unbound
> is simpler than specialized resolvers like ttdnsd.

For the record, Tails uses a combination of the pdnsd caching DNS
server, the Tor resolver (for request types it supports) and ttdnsd
(fallback for other requests); details:

   https://tails.boum.org/contribute/design/Tor_enforcement/DNS/

Cheers,
--
  intrigeri
  | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
  | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
  | Do not be trapped by the need to achieve anything.
  | This way, you achieve everything.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Tor and DNS
  - From: Linus Nordberg
- Re: [tor-dev] Tor and DNS
  - From: Nick Mathewson
- Re: [tor-dev] Tor and DNS
  - From: Ondrej Mikle

Prev by Author: Re: [tor-dev] Using a conf.d instead of a monolithic config file
Next by Author: Re: [tor-dev] Extending deadline for small features in 0.2.3.x by one week (to the 13th)
Previous by thread: Re: [tor-dev] Tor and DNS
Next by thread: Re: [tor-dev] Tor and DNS
Index(es):
- Author
- Thread