Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.protocols.dns.bind > #15722

Re: DoH plugin for BIND

From Tony Finch <dot@dotat.at>
Newsgroups comp.protocols.dns.bind
Subject Re: DoH plugin for BIND
Date 2020-05-04 12:58 +0100
Message-ID <mailman.351.1588593490.942.bind-users@lists.isc.org> (permalink)
References <20200502165717.E5F0F18A2F4E@ary.qy> <alpine.LNX.2.22.419.2005022019290.17860@desk.ddns.eckner.net> <alpine.DEB.2.20.2005041254260.638@grey.csi.cam.ac.uk>

Show all headers | View raw

Erich Eckner <bind@eckner.net> wrote:
>
> Will there be client-side DoT/DoH support in bind, too? E.g. will my recursive
> (or forwarding) resolver be able to resolve upstream dns via those?

At the moment the specifications are not yet done for encrypted DNS
between recursive and authoritative servers. It's very difficult to signal
in a DNS delegation that an authoritative server supports encryption, in a
way that is reasonably fast and secure. And it's even harder to make
changes to EPP, or to persuade registrars to support anything new.

Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
North Fitzroy, Sole: Easterly 6 to gale 8, occasionally severe gale 9 in Sole,
becoming cyclonic 4 to 6. Moderate or rough, occasionally very rough in Sole.
Rain or thundery showers, fog patches. Moderate, occasionally very poor.

Back to comp.protocols.dns.bind | Previous | Next | Find similar

Thread

Re: DoH plugin for BIND Tony Finch <dot@dotat.at> - 2020-05-04 12:58 +0100

csiph-web