Hi,
Anders wrote (28 Jul 2011 21:02:24 GMT) :
> Another option, one that I'm considering for the Haven OS, is to use
> the unbound dns server with a patch that forces it to only send tcp
> traffic. That way all dns requests are sent over tor and since we
> are doing the name resolution our selves, there is no need to rely
> on any one open dns server. This way we can also resolve every type
> of query (even DNSSEC stuff).
It means doing the recursive resolution process ourselves (I mean,
from inside the Live system itself), right?
> I'm not quite sure what the anonymity implications are of doing it
> like this, so it will need some more thought. But this might be
> something to consider for the future.
Sure. Thanks for your input!
Bye,
--
intrigeri <intrigeri@???>
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
| Then we'll come from the shadows.