[FS#747] default dns service doesn't provide qname minimization

LEDE Bugs lede-bugs at lists.infradead.org
Sun Apr 30 13:33:46 PDT 2017


A new Flyspray task has been opened.  Details are below. 

User who did this - Daniel Svensson (dsvensson) 

Attached to Project - LEDE Project
Summary - default dns service doesn't provide qname minimization
Task Type - Bug Report
Category - Base system
Status - Unconfirmed
Assigned To - 
Operating System - All
Severity - Low
Priority - Very Low
Reported Version - Trunk
Due in Version - Undecided
Due Date - Undecided
Details - Supply the following if possible:
 
- Device problem occurs on

All

 - Software versions of LEDE release, packages, etc.

All

 - Steps to reproduce

* Perform a DNS resolution

qname minimization reduces the amount of information to sent via each lookup, this is to my knowledge not supported by dnsmasq which is the default DNS resolver in LEDE. It would be nice if support was added to it, or if it was replaced by some other name server that tries to reduce the amount of information leaked to foreign servers.

The spec:
https://tools.ietf.org/html/draft-ietf-dnsop-qname-minimisation-09

Unbound plugs this leak, does it lack anything that LEDE uses?

More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=747



More information about the lede-bugs mailing list