Comments (8)
FYI, working on this now. It shouldn't be difficult to get this done client side, server side will take longer to get proper configs ready.
from trust-dns.
Just pushed server side implementations. Tests are forth-coming.
If anyone would care to review, I'd definitely appreciate it.
from trust-dns.
landed in master... I'll be working on a 0.10.0 release.
from trust-dns.
I was looking at that. It looks like it would definitely be capable of covering the same use case. I definitely have some issues with DNSCrypt, what I like about this is I can make use of more off-the-shelf tools.
One advantage of DNSCrypt is that it supports UDP. It looks like the UDP portion of DNSoD is still in draft form, but making progress.
Maybe this would be a good thing to target. I'll look into it.
from trust-dns.
End-to-end TLS done. I added some ease of use stuff to the rust-openssl
library, going to wait to see if that is accepted. I can continue on with integrating into the server configuration. Progress can be tracked in https://github.com/bluejekyll/trust-dns/tree/dns_over_tls
There will probably need to be some updates made to native-tis
for the server side, so this change may be dependent on multiple upstream libraries, which means merging into master is still a little off.
from trust-dns.
macOS support is done through the use of native-tls, and security-framework. I still need to get Linux support done, which requires an abstraction over some of the certificates on the client and server side.
from trust-dns.
I've run into some issues on the Linux side. If anyone is interested in helping me figure this out, that would be awesome:
from trust-dns.
Ok, fixed in the rust-openssl library: sfackler/rust-openssl#582
from trust-dns.
Related Issues (20)
- Forwarder seems to not use /etc/hosts despite `use_hosts_file == true` HOT 3
- Presence of a faulty nameserver in system config causes client side lookups to take forever HOT 1
- Reverse lookup fails when there are multiple PTR records HOT 1
- www.hickory-dns.org does not work - 404 HOT 6
- SIG(0) RFC2931 is not listed as supported HOT 1
- Missing point of contact for security issues HOT 3
- `IN` keyword is not accepted HOT 2
- Request for a wildcard with ANY returns nothing HOT 2
- Handle sockets that have been shut down HOT 5
- Make ```hickory_proto::quic::QuicClientStream``` clonable
- why hickory-proto 0.24.1 ring dependencies is still 0.16.20 HOT 4
- Not convenient to call bind_with_addr to make a AsyncResolver HOT 6
- Bind address in ResolverConfig does not take effort for AsyncResolver HOT 10
- `hickory-dns` responds to `dig A doesnotexist.fqdn.com.` with NOERROR instead of with NXDOMAIN HOT 6
- `hickory-dns` resolver does not honor the DO bit in client's queries HOT 2
- [RFC] DNSSEC validation: configuration syntax HOT 11
- [RFC] re-structure `named.toml` syntax to reject invalid configurations HOT 3
- TCP fallback is not always used and forcing it is not ergonomic HOT 3
- 0.25 Release HOT 10
- Static build support (openssl + cross-compile) HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from trust-dns.