[Bug 1588230] Re: systemd-resolved uses domain limited DNS servers for all requests potentially a privacy issue
Martin Pitt
martin.pitt at ubuntu.com
Thu Sep 29 11:36:42 UTC 2016
** Bug watch added: github.com/systemd/systemd/issues #3421
https://github.com/systemd/systemd/issues/3421
** Also affects: systemd via
https://github.com/systemd/systemd/issues/3421
Importance: Unknown
Status: Unknown
** Changed in: systemd (Ubuntu)
Milestone: None => ubuntu-16.10
** Changed in: systemd (Ubuntu)
Assignee: (unassigned) => Martin Pitt (pitti)
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1588230
Title:
systemd-resolved uses domain limited DNS servers for all requests
potentially a privacy issue
Status in systemd:
Unknown
Status in systemd package in Ubuntu:
Triaged
Bug description:
When configuring a DNS server for a link for specific domains (via the
Domains= ~foo syntax) systemd-resolved correctly routes requests for
those domains to that DNS server. However even without ~. on the list
it also routes all other requests there (and in parallel to the
primary servers) appearing to pick the fastest responder. This (to my
mind) represents a privacy issue as requests that that DNS server is
not intended to see are routed there.
I would have expected the ~. syntax to allow me to request this
behaviour and in its absence to not see general requests routed to
these servers.
To manage notifications about this bug go to:
https://bugs.launchpad.net/systemd/+bug/1588230/+subscriptions
More information about the foundations-bugs
mailing list