undefined | Better HN

0 pointsthe84726y ago0 comments

If you don't trust your network why don't you install a DNS stub resolver that tunnels to some external resolver that you trust and then set the OS to use localhost?

Don't push things into applications and make things more difficult for everyone else when you can secure your own computer.

0 comments

Spivak6y ago

> install a DNS stub resolver that tunnels to some external resolver that you trust.

Because the we're dealing with computers as they actually exist and are configured. And within epsilon every personal computer on the planet is configured to trust DHCP and set their DNS servers to whatever is offered. So we're in a situation where these particular applications also don't really trust the OS to a certain extent.

the8472OP6y ago

You have that backwards. It's applications that are less than trustworthy. That's why we try to sandbox them.

As for the DHCP part, if you're on a public network you should only trust it as far as you need it to bootstrap your tunnel over which you can then finally contact a trusted resolver.

OS resolver -> a single thing you need to secure every app uses its own resolver -> complete mess which makes it harder to ensure privacy of your traffic

Spivak6y ago

Browsers don't trust the OS to provide secure private name resolution. And they really shouldn't when every OS just blindly takes whatever is offered via DHCP.

I absolutely agree that DNS should be a system-level concern rather than app-level. But today, right now, for computers as they are and will continue to be for the foreseeable future this is a huge improvement. Browsers being the app that handles basically all of our sensitive information I think have earned the exception.

1 more reply

j / k navigate · click thread line to collapse

0 comments

Spivak6y ago

> install a DNS stub resolver that tunnels to some external resolver that you trust.

the8472OP6y ago

You have that backwards. It's applications that are less than trustworthy. That's why we try to sandbox them.

As for the DHCP part, if you're on a public network you should only trust it as far as you need it to bootstrap your tunnel over which you can then finally contact a trusted resolver.

OS resolver -> a single thing you need to secure every app uses its own resolver -> complete mess which makes it harder to ensure privacy of your traffic

Spivak6y ago

Browsers don't trust the OS to provide secure private name resolution. And they really shouldn't when every OS just blindly takes whatever is offered via DHCP.

1 more reply

j / k navigate · click thread line to collapse