On 07/07/2014 01:09 PM, Bernard Aboba wrote: > [BA] Presumably protection would only be from an attacker that can > snoop on the wire, but not have access to the logs? Is the assumption > that the DNS server is hosted out of country, and that measures are > used to avoid identification of DNS traffic? I am trying to > understand the scenario in which this actually would have a plausible > chance of making a difference.
I also struggle to see the significant improvement for the cases that had been discussed on the list. I would say that they go close to zero when one uses DNS servers provided by the local network operator.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Int-area mailing list [email protected] https://www.ietf.org/mailman/listinfo/int-area
