* Marius Schwarz: > Am 05.11.19 um 14:21 schrieb Florian Weimer: >> >>> ahm.. in which way, does the use of encryption, make a sourcelist for >>> dns names to ask, obsolete? >> Names or servers? > "names of domainnameservers" > >>> nscd i.e. uses resolv.conf as source for the round robin server list. >> With encryption, the server address will always be 127.0.0.1 (or >> potentially in the future, a UNIX domain socket) because pretty much all >> the current DNS client software does not support encryption. Running a >> small local cache has other benefits as well, such as caching server >> reachability information. > running a local DNS-Cache does not make so much sense as you may > think. It definitely makes sense to cache server availability because that's not something a short-running process can effectively determine from scratch. I categorically reject your notion that you can increase privacy by sending queries to more servers. As a result, you will end up with a larger set of servers you must trust, not a smaller one. Thanks, Florian _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
