[161807] in North American Network Operators' Group
Re: Open Resolver Problems
daemon@ATHENA.MIT.EDU (Nick Hilliard)
Wed Mar 27 08:48:10 2013
X-Envelope-To: nanog@nanog.org
Date: Wed, 27 Mar 2013 12:47:46 +0000
From: Nick Hilliard <nick@foobar.org>
To: Rich Kulawiec <rsk@gsp.org>
In-Reply-To: <20130327124042.GA20146@gsp.org>
Cc: North American Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 27/03/2013 12:40, Rich Kulawiec wrote:
> It's necessary because many operations are screwing with DNS results in
> order to advance/suppress political agendas, impose their moral code
> via censorship, profit via redirection to search portals, etc. If we
> could actually trust that J. Random Hotel would not do so, then yes,
> whatever DNS servers are assigned via DHCP would suffice.
then use a vpn and/or provide that service to your users. Sure, hotels and
public access wifi does all sorts of stupid and obnoxious stuff, but the
way to work around this is not by hardwiring your dns to some open resolver.
Nick
