A Look At the Safety of Google Public DNS

darthcamaro writes "Yesterday we discussed Google's launch of its new Public DNS service. Now Metasploit founder and CSO at Rapid7, H D Moore, investigates how well-protected Google's service is against the Kaminsky DNS flaw. Moore has put together a mapping of Google's source port distribution on the Public DNS service. In his view, it looks like the source ports are sufficiently random, even though they are limited to a small range of ports. The InternetNews report on Moore's research concludes: 'What Moore's preliminary research clearly demonstrates to me is that Google really does need to live up to its promise here. Unlike a regular ISP, Google will be subject to more scrutiny (and research) than other DNS providers.'"

And the worst case scenario?

[Monkeedude1212]

It fails miserably, Google revokes it, and we all go back to loving them.

Everyone loves taking a shot at Google, but when they are providing a new FREE service - I can't see it destroying their public image all that much.

Re:And the worst case scenario?

You mean like all the times that Microsoft gets blasted when they are just providing a new FREE service? *ducks*

Re:And the worst case scenario?

[Monkeedude1212]

What service has Microsoft provided to me that was Free? Besides Bing - which is only "blasted" because people don't like it as much as Google.

Everything else Microsoft has, I've had to pay for, so when it doesn't live up to its claims, I can bitch legit because I wasted my money.

Re:And the worst case scenario?

[outZider]

Most of the Live services, especially Hotmail.

Re:And the worst case scenario?

I would absolutely call Hotmail a service. If by "service" you mean "method of torture".

Re:And the worst case scenario?

[icebraining]

Don't be a troll. That was not the problem and you know it.

Re:And the worst case scenario?

[CannonballHead]

Everything?

If you're saying that because it runs on Windows (for thick-client apps), you can point the finger at Apple just as much or more, too.

If you're talking about providing software for Windows or online services...

• Hotmail
• SkyDrive
• Live Mesh (pretty cool, actually)
• Live "Spaces" or whatever they are called
• Windows Messenger
• NetMeeting (I think?)
• Microsoft LiveOffice or whatever it is called... Office Live...
• Live Photo Gallery
• MovieMaker
• Live Writer (actually quite cool/useful)
• Live Mail (I've heard this is actually a very good client)
• ...

Some of the above can be seen here. There services can be seen here. Zune is also free (the software, anyways). Media Player is free, I believe, and actually plays back better than iTunes on Windows, I think.

Nope. Nothing free!

Re:And the worst case scenario?

[CannonballHead]

Live Mesh, is pretty cool.. Live Writer is actually quite good, IMO, and produces very clean HTML (at least, in my brief tests with it with Wordpress... a custom install, too, with a custom theme and everything; integrated just fine and was a very good WYSIWYG editor). Skydrive - 25gb for free - isn't too shabby, either. I don't like hotmail, but it has sure been around for a while. Bing is actually pretty nice for some things. Microsoft's birds-eye-view is sometimes very useful, and it looks like they are doing a street view now, too.

Re:And the worst case scenario?

[Monkeedude1212]

Except that no one I knows blasts Hotmail or Live messenger or those services because they do exactly what they aim to do.

Re:And the worst case scenario?

[louden+obscure]

worst case scenario? i edit resolv.conf back to my ISP's nameservers.

Re:And the worst case scenario?

[outZider]

Which negates the statement from the coward up there.

Re:And the worst case scenario?

[CannonballHead]

But you claimed that MS hadn't provided a service that was free, I thought?

What service has Microsoft provided to me that was Free? Besides Bing - which is only "blasted" because people don't like it as much as Google.

Everything else Microsoft has, I've had to pay for, so when it doesn't live up to its claims, I can bitch legit because I wasted my money.

(emphasis mine)

Re:And the worst case scenario?

[crispytwo]

who uses Hotmail or Live messenger?

Long live ICQ!

Re:And the worst case scenario?

[eleuthero]

In addition to the Live services listed in other comments, other "Live" services are available: SkyDrive is free, Mesh is free (and works quite well--better than MobileMe and right up there with box.net and with more free space) and then there's office online which will apparently have a free googledoc's-esque system in the future.

Re:And the worst case scenario?

[kdemetter]

Well , the being free part i guess.
Which is correct : it's not because it was free that it was a problem , but that it was completely integrated , giving it a near monopoly position in the browser market.

And in the case of IE , it's so much part of the OS , that you don't get it for free, you pay for it in the price ( the developers of IE don't work for free , they are payed with the money Microsoft gets from the sales ).

Re:And the worst case scenario?

[TheLink]

There's also Maps - http://www.bing.com/maps/

Microsoft actually did maps before Google: http://en.wikipedia.org/wiki/TerraServer-USA

Before even Google was founded.

And there's Photosynth except now it requires installation of Silverlight, which I can't be bothered to install.

Re:And the worst case scenario?

[Tanktalus]

A free browser? Cool, so I could download it and, say, run it under wine, completely legitly? No? (If wine won't run it due to lack of support of needed APIs, that'd be different.)

Same goes for the media player. It's free when I can decouple it from the OS it's embedded in, and run it in a compatible environment. Lack of support for other OS APIs, however, does not make it non-free. I'm fine with being able to attempt to run it under wine legally. They don't have to support wine.

Re:And the worst case scenario?

[thetoadwarrior]

Hotmail was only ok before MS owned but now it's bloated ugly and not better for much more than a spam box. Most other live services are just inferior alternatives to something Google has done better and serves as nothin gmore than an attempt to take down Google.

Re:And the worst case scenario?

[Idiomatick]

"And in the case of IE , it's so much part of the OS , that you don't get it for free, you pay for it in the price ( the developers of IE don't work for free , they are payed with the money Microsoft gets from the sales )."

That is silly. Microsoft also pays people to make hotmail also free. But I don't see you bitching that people buying windows are subsidizing hotmail users. Even if it is true in some sense the complain is silly.

Re:And the worst case scenario?

[General+Wesc]

Well , the being free part i guess.

I'm guessing that's what icebraining was referring to, but no one had suggested being free was the problem.

Re:And the worst case scenario?

[xiong.chiamiov]

who uses Hotmail or Live messenger?

Long live ICQ!

ICQ? I'll stick with Jabber and irc, tyvm.

Re:And the worst case scenario?

[srhill]

What service has Microsoft provided to me that was Free?

Windows 2000, Windows XP, Windows Vista, Windows 7, ...

Re:And the worst case scenario?

so's herpes

Re:And the worst case scenario?

[zach_the_lizard]

Free as in runs on MacOS X, albeit in a crappier form.

Re:And the worst case scenario?

[carpefishus]

By 2020 the world will be run by and owned by Google and Taco Bell.

Re:And the worst case scenario?

[ChatHuant]

Except that no one I knows blasts Hotmail or Live messenger or those services

All right, but apart from the sanitation, the medicine, education, wine, public order, irrigation, roads, a fresh water system, and public health, what have the Romans ever done for us?"

Re:And the worst case scenario?

[Intron]

because they do exactly what they aim to do.

Send huge amounts of spam?

Re:And the worst case scenario?

[AmiMoJo]

Give the Live guys a break - I mean can you imagine trying to compete with Google? Google is a verb now, and I can't see people talking about "binging" stuff any time soon.

Microsoft's web stuff is probably the only time we will get to see a corporation with infinite money to throw at a problem for decades at a time keep failing and still carry on. MSN and Bing are the default homepage and default search option on Windows and yet somehow they are so shit people will make the extra effort just to avoid using them.

Re:And the worst case scenario?

[icebraining]

By "the problem", I was refering to what lead them to court: "they provided a free browser and the haters took them to court over it."

We were discussing free products, and this has nothing to do with IE being free or not; this argument is essentially a red herring, and the poster is trolling.

Re:And the worst case scenario?

[spitzak]

You can use hotmail without buying Windows. It is unlikely somebody uses IE without using Windows and that is only allowed if you pay for it.

However I do think the original poster is incorrect. The cost of Microsoft is spread over the price of the machines, even if you buy a bare box. If you use a computer you certainly parted with at least some money to Microsoft, and that was distributed to all their projects, so you are paying for at least a fraction of any Microsoft thing you use.

Re:And the worst case scenario?

Free! You only have to buy a Windows license!

Re:And the worst case scenario?

[General+Wesc]

It wasn't implied that the problem was that they were free. It was implied that because they're free, complaints are unwarranted.

The counter-point is that they have a hidden cost, and that's what the court cases were about. He wasn't trolling; he was answering a question.

Re:And the worst case scenario?

[Puppet+Master]

You mean like all the times that Microsoft gets blasted when they are just providing a new FREE service? *ducks*

Microsoft is giving away free ducks?

Re:And the worst case scenario?

[hey]

I just tried SkyDrive (had not heard of it before). There is a 50Meg limit per file. I was hoping I could tar/zip up some files but not really I guess.

Re:And the worst case scenario?

[brusk]

True now, false when there was an IE for Mac.

Re:And the worst case scenario?

[HaZardman27]

The Express Editions of their various Visual Studios are free, as is the XNA Studio add-on to Visual C# Express.

Privacy for what?

[Dogun]

My real concern with Google DNS is privacy. Your DNS records are extremely valuable to google, so I sincerely doubt google is not going to record them.

I'm not even entirely convinced about the benefit of using google's; your local DNS server hierarchy is going to be far more responsive, even if it does have a higher miss rate.

Re:Privacy for what?

[beefnog]

The one thing that strikes me as silly about the "what if Google datamines our DNS requests" concern is that those people assume their ISPs aren't already doing so.

Re:Privacy for what?

[LOLLinux]

And what strikes me as even more silly is when people use the comeback of "But [insert person, group, company, etc] is (probably) already doing it too!" as if that justifies the actions of someone else.

Re:Privacy for what?

[Monkeedude1212]

If I hadn't already posted I'd mod that insightful.

Seriously, your ISP's have been following dirty underhanded tactics the moment you signed up, by delaying your installation, lacking in support, not offernig you full speeds, and disconnecting you when you approach your full speed. Now, given that they are in it for the money, and ALL of your traffic is going through them - they have every reason to take your information and sell it. You KNOW they have your information because the police can demand that information from ISP's to crack down on Pedo's and such.

So really - by using a Google's DNS, sure, you might be allowing your information to be accessed by Google more easily. But all in all, who says they weren't simply purchasing that information before? Or rather - Google is the least of your worries when it comes to privacy.

Re:Privacy for what?

[Spazztastic]

The one thing that strikes me as silly about the "what if Google datamines our DNS requests" concern is that those people assume their ISPs aren't already doing so.

We already know they log our search requests. Call me naive, but what are they going to do with our DNS requests? As long as they aren't injecting ads or stealing data, that is...

Re:Privacy for what?

[maxume]

Their public statements say that they are not linking the requests to other Google services, and that they are discarding ip addresses within a day or two.

Re:Privacy for what?

[DragonWriter]

The one thing that strikes me as silly about the "what if Google datamines our DNS requests" concern is that those people assume their ISPs aren't already doing so.

The especially odd part about the complaint is that Google has an upfront, posted policy about what they are doing as far as retaining your DNS requests, which I've never seen from an ISP.

Re:Privacy for what?

[beefnog]

I'm not saying that it justifies it in any way. I'm merely pointing out that scapegoating a company that does genuinely good things while ignoring the company that routinely dicks its customers is odd. Plus, if you had read yesterday's article, you would understand that google is purging IP addresses from the records.

Re:Privacy for what?

[octaene]

An excellent point. That's why I think OpenDNS is a better option. They at least appear to give you a choice in the matter. I'm not sure Google's services are equitable. There's a good blog post from the founder of OpenDNS where he critiques Google's service. It's a good read.

http://blog.opendns.com/2009/12/03/opendns-google-dns/

Re:Privacy for what?

[MozeeToby]

And what strikes me as even more silly is that Google has a privacy policy for the service that says all logs are deleted after 48 hours and aren't linked back to other Google services whereas I have no privacy statement at all about DNS from my ISP (since they slipped it in silently about 4 months ago).

Re:Privacy for what?

[sonnejw0]

Except that Google has a lot of other information on us already, too. Cross-referencing data sets provides true statistical power. Our ISPs do not have the same information that we voluntarily give Google. There's regulation against our ISPs stealing the information that gets passed through them. There's no stopping voluntarily giving Google control of our email, calendar, health records, DNS requests, marketing information, voicemail transcripts, blog articles ...

Re:Privacy for what?

[icebraining]

When you use GoogleDNS, you're providing the request to both of them, as your ISP can see your DNS requests anyway.

Re:Privacy for what?

[cheros]

The especially odd part about the complaint is that Google has an upfront, posted policy about what they are doing as far as retaining your DNS requests, which I've never seen from an ISP

Well, fine, but if a burglar puts a notice on his balaclava that he's going to rob my house I still reserve the right to prevent that from happening, polite notice or not.

Re:Privacy for what?

It's not really a good read. It's at best alarmist, and more likely just flamebait.

Re:Privacy for what?

[shentino]

First off, ANY DNS server will be getting your IP address. After all, that's how the hell it knows where to send the fracking reply.

Secondly, logging of IPs is a basic step in holding your clients accountable to make sure you aren't being abused. If some fucktard uses a hole to hack into your system, having a log of where he came from will help nail him.

Google doesn't really have a choice but to have your data. We should judge them based on what they DO with that data.

Re:Privacy for what?

[HangingChad]

your local DNS server hierarchy is going to be far more responsive, even if it does have a higher miss rate.

I set it up on my laptop and I can't see any difference between that and my desktop in terms of speed. I'm going to leave it on my laptop which connects through different hotspots with different DNS providers.

Google can have my DNS records while I'm on the road. I think it's a great service and the kind of really neat thing that's pretty rare in corporate culture these days. We should be giving them props even if you choose not to use it. But around here no good deed goes unpunished.

Re:Privacy for what?

[iris-n]

At least my ISP is a relatively small company who is not affiliated with Google.

Google already has my email, my searches, (some of) my IMs, my social network, my maps. There's Google Docs, too, which I don't use.

I don't need them to have my DNS records as well. If they have that too, the question becomes which information about me they don't have. And that is fucking scary.

Re:Privacy for what?

[maxume]

Ya know, if I had an answer to that, I might have phrased my statement a little differently.

I guess the best answer at this point is simply to point out that they haven't done a great deal to suggest that you shouldn't believe them, and on some level, they are regulated by a reasonable government (depending quite a lot on how one chooses to define reasonable).

Re:Privacy for what?

[shentino]

You do realize the inherent conflict of interest in criticism from a competitor right?

Do remember that at least and load up on grains of salt.

Re:Privacy for what?

[Lord+Ender]

If you read about this at all, you would know that Google does use the records to generate stats (as in: people who visit slashdot.org have a 2% chance of visiting thinkgeek.com). Google claims they do not keep DNS records in a manner which can identify individuals.

That said, the big telcos can snoop your DNS queries and DO turn that info over to government agencies. If your ISP or your government want to know who Dogun of Slashdot is IRL, they need only observe that the same IP which posts as you here also logs in as Thomas Q Payne at Chase bank.

Re:Privacy for what?

[TheModelEskimo]

And yet after all that, people still think that, out of the kindness of their hearts, Google will decree that its first ToS for this service is set in stone, and think that somehow a bad ToS is always better than no policy at all. Get real - a ToS is a very malleable document; ask anyone who owns a credit card. Just give Google some time and you'll wonder why on earth you thought their simplified legalese had no loopholes.

Re:Privacy for what?

[gandhi_2]

You are really that worries about privacy?

Every time you google, you need to be logged out of all google services: includes blogger, blogspot, picassaweb, youtube, and all the others like analytics, adsense, gmail....

Clear all your cookies.

Then reboot your home cable/dsl modem or whatever to get a new IP.

Then go ahead and do you searches.

Clear all your cookies.

Then reboot you home cable/dsl modem or whatever to get a new IP.

Then it's safe to log back in to google services.

That should cover you for all googlespying that involves google analytics and tieing your search queries to you.

Oh, what's that? You aren't THAT worried?

Re:Privacy for what?

[Ephemeriis]

your local DNS server hierarchy is going to be far more responsive, even if it does have a higher miss rate.

I switched to OpenDNS a while back because we were having so many problems with our local ISP's DNS.

The issue, at the time, was straight-up DNS failures. I don't know if they were making changes or if someone tripped over a power cord... But we weren't able to resolve anything - even though I could ping by IP address. So I plugged in the OpenDNS servers and everything started working again.

Since that time I've done some un-scientific testing and found that OpenDNS's servers are consistently faster than my local ISP's. It'll take several moments to even look up a name with my local IPS's DNS. OpenDNS can find the server almost instantly.

Then there's the fun stuff with ISPs playing with your NXDOMAIN results... There was a lot of talk for a while about redirecting folks to search pages to generate advertising. OpenDNS does this by default, but it is very easy to opt-out. And it is done on their end of things, so I don't have to remember to set a cookie or anything like that. You just tell them no NXDOMAIN weirdness from my address, and it is done.

So... I could easily see switching to Google's DNS if you've got slow servers at your local ISP, or if your ISP is redirecting your NXDOMAIN results.

My real concern with Google DNS is privacy. Your DNS records are extremely valuable to google, so I sincerely doubt google is not going to record them.

I'm not sure I really care...

I mean, There's probably some kind of record or cache being generated even without Google's DNS being involved. I know we do some logging at pretty much every business we support, and our own internal network is doing some monitoring as well. I just kind of assume that various ISPs along the way are doing similar things.

Further, pretty much every website you visit is going to log you and drop a cookie on your machine.

I mean, I'm sure Google will try to use this information to improve their advertising revenues... They'd be silly not to... But I'm just having a hard time getting worried about it.

Re:Privacy for what?

[markkezner]

For me, the dealbreaker with OpenDNS is that, when you type in a non-existant domain, OpenDNS resolves it to an IP that gives you their custom search page. The standards compliant response would be NXDOMAIN, which is what Google (and some others) provide. This alone was enough to make me switch away from OpenDNS.

Re:Privacy for what?

[natehoy]

I think his article was well-thought-out and well articulated, but I have a few problems with it.

First, he does address Google's claim that Google does not redirect to ad-laden placeholders then cleverly redirects the argument to one of privacy. If OpenDNS is directing me to an ad-laden site if I mistype a URL or enter an invalid one, then I have a bunch of ad servers who now have my IP address and probably know what site I meant to go to. This may be better than giving all of my DNS lookups to a company, but at least with Google I'm giving them all to one company that I know and can decide if I want to trust. With OpenDNS, if I typo a URL, my error is, in effect, being sold to an unknown third party. I think it's somewhat disingenuous to tout privacy then use redirect pages to send users to third-party advertisers who may or may not respect the OpenDNS privacy policy. At least Google is subjecting my DNS lookups, both good and bad, to a consistent privacy policy.

He does, however, make an excellent point about their Dashboard service and the level of control you as an OpenDNS customer have over your experience. Of course, in return for that you do have to sign up for an account to use it, and you get usage logs associated with your account and email address. Their privacy policy on such information appears excellent, but Google promises to anonymize the data as well, so that boils down to a matter of who you trust more. Personally, I'd be inclined to trust both, so it really boils down to what features are most important to you - proper domain handling, or detailed controls over everything BUT proper domain handling?

Re:Privacy for what?

[Chyeld]

A 'bad' TOS is far far better than no TOS. At least if you have a bad TOS you know to avoid the service because you know what they say they can or can't do.

No TOS basicly means they could be doing anything they wanted, and you'd never know.

Re:Privacy for what?

[noidentity]

And what strikes me as even more silly is when people use the comeback of "But [insert person, group, company, etc] is (probably) already doing it too!" as if that justifies the actions of someone else.

No, but it does show that singling one out as the only one is not justified, and it highlights the erroneous approach of focusing only on new things, all the while ignoring things that have been around all along, like your ISP being able to datamine everything you do.

Re:Privacy for what?

[NatasRevol]

Amen! I use OpenDNS at home & work, but this irritates me non stop when I'm typing too fast and have a typo in a domain name. Don't take 5 seconds to respond with a custom search page. Return a not found immediately.

Re:Privacy for what?

[DragonWriter]

Well, fine, but if a burglar puts a notice on his balaclava that he's going to rob my house I still reserve the right to prevent that from happening, polite notice or not.

That's a fine attitude, I suppose, but not at all relevant, since its not even remotely a good analogy to Google with regard to datamining public DNS records to uncover personal information, since that's not what their notice says they are doing with the data.

Re:Privacy for what?

[mounthood]

Their public statements say that they are not linking the requests to other Google services, and that they are discarding ip addresses within a day or two.

Google also has a Privacy Policy, but the thing is, it was "Last modified: March 11, 2009" and "Please note that this Privacy Policy may change from time to time."

The lack of trust that so many people are venting isn't from thin air. The US government is spying on it's own citizens (and everyone else.) Sprint is working hard setting up websites to let local law enforcement to monitor citizens. Also, there are no standards for data privacy, and companies change their own policy whenever they want and change it to whatever they want.

Re:Privacy for what?

[noidentity]

That blog posting reads like PR. It's so clearly not objective. The biggest reason I switched to Google's DNS is that it doesn't do any damn redirection. I hate that OpenDNS search page that comes up. I don't see any way to configure OpenDNS without having to sign up or something annoying. Google's doesn't require any signup; just 8.8.8.8 and 8.8.4.4 and go.

Re:Privacy for what?

[Kz]

You do realize the inherent conflict of interest in criticism from a competitor right?

yeah, don't listen to the competitor's arguments! also, don't listen to the defendant attorney in court cases!

c'mon, it's always important to read both sides. if they're the best they could say; but one of them is full of ad hominem's or similar bad arguments, then it's a good sign the the other side has a better point.

Re:Privacy for what?

[maxume]

Well, my above statement doesn't actually express an opinion regarding Google. That said, if you are going to criticize them for changing the privacy policy, it is worth criticizing the changes. Here are the substantial additions (also, the only substantial change made):

Google adheres to the US Safe Harbor Privacy Principles of Notice, Choice, Onward Transfer, Security, Data Integrity, Access and Enforcement, and is registered with the U.S. Department of Commerce's Safe Harbor Program.

How poisonous. Given the litigation climate in the U.S., I don't think it is reasonable to expect a company to have a fixed privacy policy. Also, note that "substantial" above refers to my opinion (but it isn't real hard to investigate the changes).

Re:Privacy for what?

[cheros]

OK, hit the brakes for a moment. You actually believe what they say without ANY evidence to back it up?

Let me give you a heads up then. Read their privacy policy. So far, so good, no? Now read chapter 1 of their Terms of Service and see how it takes precedence over EVERYTHING else. Still feel comfortable?

I'm astonished at how much leeway Google is given in spying on everyone's life..

Re:Privacy for what?

[gad_zuki!]

>Their public statements say that they are not linking the requests to other Google services, and that they are discarding ip addresses within a day or two.

Right and when google started their business they didnt have a tracking cookie that expires in 2038. Things change. The DNS data has value and once google's shareholders realize this they will begin to mine it. Heck, if they dont then the executives can be sued for not running the business properly.

Re:Privacy for what?

[Brian+Recchia]

Now read chapter 1 of their Terms of Service and see how it takes precedence over EVERYTHING else.

Actually, this is quite the opposite.

1.5 If there is any contradiction between what the Additional Terms say and what the Universal Terms say, then the Additional Terms shall take precedence in relation to that Service.

In the document, "Additional Terms" refers to additional ToS documents and Privacy Policy documents, etc., and "Universal Terms" refers to this. I think this is pretty much the most straightforward legalese I've ever seen, and it very clearly states that if the privacy policy of their DNS solution says they're not going to keep your data more than 48 hours, they are not going to, regardless of what the Universal Terms document states.

Re:Privacy for what?

[markkezner]

That may be true, but their preferences only work if OpenDNS can tell which networks are yours. They detect this when you use your browser to log into the control panel, or if you install client-side software (OpenDNS Updater, which is Win\Mac only). You could do it with DynDNS too, but not everyone uses that.

Anyway I'd rather not go through all that effort, and would prefer the NXDOMAIN behavior to be the default for anonymous requests.

Re:Privacy for what?

[mounthood]

Thank you for contributing information on topic, but the defense of Google is wrong. The criticism is not of a narrow technicality, or the particular change to the privacy policy. As others pointed out, Google included privacy statements about DNS when no other ISP or service does this. Why did they feel the need? You can't address this by trying to state simple facts (although appreciated) or citing particular issues. The fear and frustration is broad and stems from many sources in addition to Google, as I tried to point out above.

Re:Privacy for what?

[causality]

Since that time I've done some un-scientific testing and found that OpenDNS's servers are consistently faster than my local ISP's. It'll take several moments to even look up a name with my local IPS's DNS. OpenDNS can find the server almost instantly.

This part interested me. All things being equal, you'd expect your ISP's server would respond more quickly because it's fewer hops away. However, all things are not equal because of the nature of OpenDNS. Specifically, I would assume that OpenDNS has many more users so it resolves, and thus caches, many more domains than your local ISP's servers. It sounds like in your situation, the benefit this gives you outweighs any latency incurred by querying a remote DNS server. Of course, we also don't know whether your ISP is doing a good job of administering its servers and making sure they can handle their load, so what really interests me is taking the ISP's DNS out of the picture and comparing OpenDNS to a local server.

If it's practical for you, have you ever tried running your own caching nameserver on your own computer? Your own caching server could either refer requests to another nameserver, such as your ISP's or OpenDNS, or it could directly query the root DNS servers of the world (like what your ISP and OpenDNS are doing). Here, I refer to the latter configuration and it's what I use for my own LAN. If you have ever tried this, how did its performance compare to OpenDNS?

Re:Privacy for what?

[Gerald]

It looks like you can disable this behavior if you have an account. I haven't tested it extensively but it seems to work as advertised.

Re:Privacy for what?

[Brian+Recchia]

Yes, and if Google actually said they were going to store your DNS requests for any amount of time useful for doing more than simply cacheing them to make them faster, and/or they said they were going to otherwise tie them to any other information they have on us, I wouldn't use their DNS service.

Re:Privacy for what?

[Pearlswine]

I use OpenDNS at home and it is possible to disable the NXDomain redirect if you setup a free account. http://www.opendns.com/support/article/312

Re:Privacy for what?

[maxume]

I really have no idea what you are talking about. Sorry.

Hilariously, The "U.S. Department of Commerce's Safe Harbor Program" is a standard for data privacy (designed to work alongside legislation in the EU).

Re:Privacy for what?

Google has motivation not to have a bad ToS -- if they do, everyone will switch to OpenDNS. Google is doing a GOOD thing -- more by attaching a ToS to their DNS service than by providing a free DNS. It adds competition to the DNS marketplace, and might challenge ISPs to put more thought/transparency into their DNS offerings too.

Re:Privacy for what?

[klui]

In general I like Google products. I'm paraphrasing someone who wrote the following and I can't find the link right now. It's either on Digg or Reddit. It's not the current Google I'm afraid of. It's the future Google 2 or 3 generations from now that scare me. Once the founders leave, whoever is left behind will not care about "do no evil," and will do whatever it can so it has any advantage. As Google gains more influence, the chances of its executives taking advantage of that influence beyond "do no evil" will probably be irresistible.

Re:Privacy for what?

[Idiomatick]

Give a single example of a Google ToS changing for the worst.

As I said in the other story, Google stands to gain NOTHING by alienating their whole freaking market for this. Only mega nerds will bother changing their DNS to Google's since only nerds have even heard of DNS. And said nerds will abandon Google DNS in a matter of days if they fuck with the ToS. And the streisand effect would be fucking huge in the group that uses the service.

I think it is a bit more likely that Google is doing this for the data that they SAY they are taking since that alone is valuable. The extra data they'd get by fucking their privacy policy would be minimal, the downside huge.

Re:Privacy for what?

[natehoy]

Choices:

1. Use my ISP, who never made any promises of privacy at all, and at least in the case of mine ALSO redirects me to an ad if I typo a DNS request (faked NX records). Comcastic!

2. Use OpenDNS, which promises not to sell.. oh, yeah, that's right, promises don't really mean anything to you from Google, then they probably don't from OpenDNS either, but anyway they make the same promises as Google. And they redirect me to an ad-laden third party site if I typo a DNS request. So I get a little more privacy (in theory) but my ISP can still detect what traffic is going about. And I still get NX violation.

3. Use Google. The only of the three who has promised (for what that promise is worth) not to share my DNS requests, *AND* follows the NX standard for mistyped URLs (error message). Free, fast.

4. Use Level3's DNS servers directly (4.2.2.2, 4.2.2.3, 4.2.2.4). -- My choice. They are a little slower, but they work, and as far as I've seen they follow the NX standard. Of course, I don't know what their privacy policy is like.

My DNS lookups are going to be spied upon no matter who I use. Comcast, by definition, can see all the traffic I generate including DNS lookups. So giving it to Google is [ __ not worth | __ worth ] getting properly-working NX records on a relatively high-speed DNS server. Check the appropriate checkbox. If you chose "worth", then 8.8.8.8 and 8.8.4.4 are for you! If you checked "not worth", then you might want to research your alternatives.

The really interesting part of this whole thing is that some people are becoming more aware that there ARE actually choices in DNS, and that it's not just an invisible part of the Internet. If no one ever uses GoogleDNS, this whole debate would be a major win for that and no other reason.

Re:Privacy for what?

[_Sprocket_]

It might suprise you, but everyone has a contract with their ISP yet there are ISPs that act against their customer's best interest. That "comeback" didn't do squat. So much for accountability.

The point here is history. Show that Google is doing something wrong, and people WILL raise a stink about it. Google gets a lot of milage out of good will and that won't last long if they misstep.

Re:Privacy for what?

[causality]

You are really that worries about privacy?

Every time you google, you need to be logged out of all google services: includes blogger, blogspot, picassaweb, youtube, and all the others like analytics, adsense, gmail....

Clear all your cookies.

Then reboot your home cable/dsl modem or whatever to get a new IP.

Then go ahead and do you searches.

Clear all your cookies.

Then reboot you home cable/dsl modem or whatever to get a new IP.

Then it's safe to log back in to google services.

That should cover you for all googlespying that involves google analytics and tieing your search queries to you.

Oh, what's that? You aren't THAT worried?

I appreciate that taking an idea to a ridiculous extreme, noting that the extreme to which you took it is ridiculous, and then concluding that the idea is therefore inherently flawed is a common discussion tactic around here. It's a good way to support a predetermined conclusion. By "predetermined" I mean that you take a position first and then look for ways to justify it, rather than researching the issue and seeking to understand the different approaches that can be taken. In that fashion you seem to have already decided that anyone who enjoys privacy is some kind of paranoid lunatic or must otherwise be an unreasonable person. If you're willing to consider a more moderate approach than the facetious one you have outlined, I'll explain my setup.

It's standard practice for the logfiles of a Web server to record the IP address of visitors to that site. In Google's case, it's expected that they will also keep logs of search queries. I am willing to accept that when I use Google's search engine, they can (and will) associate the search terms I use with my (dynamic) IP address. If I were really worried about that, I would use Tor, but I'm not really worried about that. I consider it fair enough and regard it as something to be expected since I am directly submitting that data to Google.

What I disagree with is when Google wants to use various techniques to track my usage of non-Google sites. That is not data I directly submit to them, but rather, that they go out of their way to obtain. I understand why they do it; I just don't like it and don't care to participate in it. To that end, I take various technical measures to make sure that they do not obtain this data. This isn't specific to Google; those measures are designed to prevent anyone from performing this kind of data mining on me. My machine just doesn't volunteer that kind of information to anyone. The information is extraneous in the sense that I can request a URL and receive the contents of that URL from the server, whether or not I allow that server to know where else I've been. So I regard all remote servers as being on a need-to-know basis, and when it comes to my browsing habits, they don't need to know.

This is an appropriate response to the opt-out nature of this kind of marketing. I never asked to be tracked and never signed a document stating that I consent to it. Furthermore, even if I never use a single Google service, other sites that I do visit would still help Google Analytics track my browsing. For that reason, even the quid-pro-quo arguments (your data in exchange for free services) are specious because they will try to obtain my data with no regard for whether I actually use their services. Whether I want it or not, I am tracked by default until and unless I take measures against it. Therefore, those measures are fair game and I am well within my rights to implement them.

Note that none of my arguments depend on Google doing anything "evil" with my data. Whether they use it in a perfectly benign way or whether they abuse it in every possible way, my arguments above still hold. That's why portraying privacy advocates as paranoid lunatics misses the point, though it's a cute way to sway those who don't know better. The data gathering amounts to taking something tha

Re:Privacy for what?

[dissy]

My real concern with Google DNS is privacy. Your DNS records are extremely valuable to google, so I sincerely doubt google is not going to record them.

I'm not even entirely convinced about the benefit of using google's; your local DNS server hierarchy is going to be far more responsive, even if it does have a higher miss rate.

So what you are saying is, you are upset at the idea of google logging your dns traffic, yet NOT upset with the idea of your ISP logging your DNS traffic and selling it to google?

Because google only gave you a legal document stating they wouldn't record your traffic longer than 48 hrs and would not tie those results with any other google service. You know, a legal document that you can use in court.

Your ISP has provided no such document, and as you admit to sincerely doubt google would avoid doing what is now illegal, so you must equally doubt your ISP would avoid doing it too, probably more so since your ISP likely has no such legal document.

Sounds to me the only way you can sleep easy at night would be to switching to google, and letting your doubt rest easy knowing you now have the law on your side, and moving away from your ISP that most likely IS (and if not, could legally do so) what you are so worried of.

Re:Privacy for what?

[natehoy]

So you're saying that a clear, readable statement about privacy is more suspicious than total and complete silence on the issue? Or am I missing something? That's not really what you meant, right?

Google feels the need to do this because every time they offer a new service "privacy" is the very first word off everyone's lips. How many times have we all read diatribes against Latitude, Gmail, etc for lack of a clear disclosure of privacy terms before the service even goes beta? And now that Google has released clear, plain English privacy statements about a new service, it's suspicious behavior? Sounds to me like Google is giving the general public what they asked for.

I'd say that if Google is the first ISP or service to have a privacy policy (which they are not, but let's say they are) then this is to be commended, not criticized. Again, they are not. OpenDNS, at least, has a clear policy and it seems to be a good one. And kudos to them for offering it.

I'd rather have a clear cut policy, even if it is subject to change, than total silence where the vendor can do anything they want without telling me. Google has been pretty good about telling me when the privacy policy for specific services changes, and for the most part they have been responses to accusations of what people THINK they MIGHT do with the data, and by and large they've been "no, we don't do that." I don't think I've ever seen them update a privacy policy for the purpose of giving them more rights than they had prior to the change.

If you don't trust Google, fine. They, like any other company or person, certainly could be lying. Fair enough.

I think they've certainly held up well to public scrutiny of their actual privacy practices, overall. They've certainly made some mistakes, but they've also been pretty good about discussing them openly, correcting them when their user base decides that a particular practice is unacceptable, and (like Microsoft with security) seem to be taking privacy extremely seriously.

Of course, Google also does not provide any core services. Email (Gmail), IM (GoogleTalk), DNS, search, mapping, collaboration (Wave), news aggregation (Google News) - every one of these services is available elsewhere. Just make sure you look at the privacy policies of your chosen vendor, and please consider that a lack of a written policy is generally not a good sign.

Re:Privacy for what?

[DragonWriter]

OK, hit the brakes for a moment. You actually believe what they say without ANY evidence to back it up?

Whether I believe Google's published policy or not is rather immaterial to the criticism I presented in GP of GGP's analogy comparing Google's notice to a burglar announcing intent to rob your house.

So I congratulate you for, like GGP, posting something completely irrelevant to the material it is posted in "response" to.

Re:Privacy for what?

[Ephemeriis]

I have not run my own caching DNS server on my own home network.

We have plenty of customers that we support who are running their own DNS servers simply because they're using Active Directory. These days we'll typically use OpenDNS's servers just because it is one set of numbers that works regardless of who the ISP is... But I haven't really noticed much difference between using OpenDNS's servers over the local ISP's servers once you've got your own DNS in-house.

However... Given all the other issues I've had with my ISP at home... I'm just going to assume that they've got a crappy DNS server that can't handle the load.

Re:Privacy for what?

[Logic+and+Reason]

In what way do you feel that Google's services (Google Public DNS in particular) are not "equitable"?

Also, that blog post is pure PR bullshit and FUD.

Re:Privacy for what?

[tibman]

Google included privacy statements about DNS when no other ISP or service does this. Why did they feel the need? You can't address this by trying to state simple facts (although appreciated) or citing particular issues.

Just because "one of these things is not like the others" doesn't mean it is wrong. It might be possible they are the only one to get it right. Or it might not even matter at all and you are pointing at shadows. So please don't say the defense of Google is wrong until you have a good reason to say their privacy statement is bad. Currently is appears to be very good and clearly worded.

Re:Privacy for what?

[pwfffff]

If you're just going to be a paranoid fuck and ignore all discussion in favor of your prejudices then why even waste your time coming to this site? Obviously nobody's going to change your mind without buying you a fucking plane ticket to Google's data center so you can read the code yourself, and you're certainly not going to convince anyone of anything by making trite, sarcastic, baseless remarks. Even if someone were to take your point to heart, it still wouldn't prove what you're obviously trying to imply: that they're lying THIS time.

Way to post as AC too, ensuring that nobody will ever be able to communicate back to you just how fucking USELESS you are.

Re:Privacy for what?

[pwfffff]

I'm astonished at how seriously paranoid you are. There's literally no way Google could EVER prove to you that they weren't 'spying' on you. There are almost infinitely many ways you could prove they WERE spying on you. Now who do you think would provide a guarantee against spying on you, and who do you think would simply omit the issue and do their spying without bringing attention to it? Now, where exactly in your current DNS server's TOS does it say that they don't log data?

Re:Privacy for what?

[mea37]

What's the most recent shareholder lawsuit you can think of?

Yes, there is a financial responsibility to shareholders. However, people love to trot this out to "prove" how a business has acted or will act, and it just doesn't fly.

The DNS data may be valuable, but customer goodwill may be more valuable (especially when loss of goodwill would decrease access to the data). The decision to retain and mine the data, or to avoid doign so, will be a business decision, and it's unlikely to result in a lawsuit either way. (I'd say the most likely way to end up in court, actually, would be to mine the data but mislead the public about doing so.)

Re:Privacy for what?

[klui]

Here's the link http://tech.slashdot.org/comments.pl?sid=1465906&cid=30314796

Re:Privacy for what?

[mounthood]

So you're saying that a clear, readable statement about privacy is more suspicious than total and complete silence on the issue? Or am I missing something? That's not really what you meant, right?

The OP wrote that "Their public statements say..." as if it was an answer to the questions and concerns in this thread. It's not, and I tried to explain why.

Google feels the need to do this because every time they offer a new service "privacy" is the very first word off everyone's lips. How many times have we all read diatribes against Latitude, Gmail, etc for lack of a clear disclosure of privacy terms before the service even goes beta? And now that Google has released clear, plain English privacy statements about a new service, it's suspicious behavior? Sounds to me like Google is giving the general public what they asked for.

Google isn't giving the public what they want, but not for lack of trying. What the public want's (as evidenced by this discussion and many similar on other sites) is to not be spied on and have issues of data privacy resolved in a sensible and stable manner. Companies making arbitrary, complicated and changing policies isn't enough. And again, it isn't just what Google does, or says, or if people trust them, but also the environment Google is working in, where others are spying and lying.

Re:Privacy for what?

[Idiomatick]

"cake"... curse you nerd society for making that so tempting to turn into a reference. I don't think I can even have the stuff at my birthday, no one would believe me anyways.

Re:Privacy for what?

I know I certainly trust Google more than my ISP (Comcast) and if I had the option to use Google as my ISP, I would.

That said, if my ISP wants my DNS data, they can have it. And by can I mean they're able to have it, not that I'd give it to them. DNS isn't an encrypted protocol, so even if I used Google's public DNS, it's relatively trivial for my ISP to watch everything that goes out on port 53.

So if you start with the presumption that your ISP is pure evil and will be doing this type of thing anyways (I'd say that's fairly safe in my case), the choice is not between the ISP and Google, it's between the ISP and both Google and the ISP.

That said, I made the choice to use Google's DNS for the simple reason that it's faster. I just don't care about the privacy aspect enough to base my decision on it. But I'm under no illusion that by choosing to use Google I've been able to keep Comcast from accessing the data.

Re:Privacy for what?

[AmiMoJo]

Furthermore, if anyone had bothered to read TFA someone might have pointed out the reason Google gave for starting this service.

Google have a very big interest in improving DNS response times. They have a nice graph on their site showing how DNS look up often account of 1/3rd or more of page load time. By providing a faster and more resilient DNS service they make it faster for people to access their services and faster for them to get to their destination in the case of search.

That is, after all, Google's number one service - getting you to where you want to go.

Re:Privacy for what?

[causality]

Good points, most of them. However, I would assert that:

The information generated by YOUR actions and recorded by other parties is YOUR property about as much as the memories other people have of you doing something silly at a family get-together.

That depends on whether those people follow me around to events to which they are not invited in order to have those memories. If they don't, then it's like when Google gets my IP address and search terms and I'm fine with that. If they do, then it's like when Google gets thousands of non-Google sites to host its tracking tools so they can track me whether or not I ever use their services, and I'm not fine with that.

Still, when I say it's mine, I refer to the fact that this data would not exist if I did not actively create it. I also refer to the fact that the Googles of the world need my assistance to obtain it. I have to load their pages, accept their cookies, and run their scripts (and several other things) for them to have it. I am under no obligation to do those things, and when I refuse to, they don't get my data or don't get nearly as much. So the data originates with me and is under my control, and that is the sense in which it is mine.

Re:Privacy for what?

[libcrypto]

I have used OpenDNS. I agree it is faster and I prefer that to my local ISP's dns servers. But the NXDOMAIN thingy is not so easy for me to turn off since I have a dynamic ip. I started using 4.2.2.2 as primary because of that. Yesterday I changed to 8.8.8.8 and 8.8.4.4. Hopefully I don't have to change this for a long time now.

Re:Privacy for what?

[Ephemeriis]

I have used OpenDNS. I agree it is faster and I prefer that to my local ISP's dns servers. But the NXDOMAIN thingy is not so easy for me to turn off since I have a dynamic ip. I started using 4.2.2.2 as primary because of that. Yesterday I changed to 8.8.8.8 and 8.8.4.4. Hopefully I don't have to change this for a long time now.

That is a problem.

They have a dynamic IP updater you can use... But it's kind of a pain just to keep from getting your NXDOMAIN responses redirected.

Which is why I'm thinking this Google DNS could be great. There's no mention of any kind of filtering or playing with NXDOMAIN... Just straight-up vanilla DNS. We could start rolling that our for some of our clients and not have to worry about their dynamic addresses.

Re:Privacy for what?

[cheros]

Hmm, paranoid - not sure. I know how hard it is to delete data once you have given it (read: impossible), and I am very well aware of just how quick you can mosaic match different data sets.

I'm not paranoid because that would mean using Slashdot over TOR and changing user names a lot..

As for "not knowing if my current ISP doesn't do this" - to be accurate, it's "whoever resolves my DNS queries right now", and those I use are located in a country with very rigid, well enforced privacy laws. That puts to barriers in the way to abuse: firstly the data lives in a safer place, and secondly, international use will require international collaboration. That means they will only do it when it's worth the effort, so the casual insider abuse risk is less. You can see what easy access to information can do when you go to the UK at present, it's turning into a police state..

And yet, if I *am* a criminal there will be nothing in the way to get that data - and I'm 100% fine with that. That I don't have anything dodgy to hide doesn't mean I have to go onto a central market square and undress :-).

Re:Privacy for what?

[cheros]

The really interesting part of this whole thing is that some people are becoming more aware that there ARE actually choices in DNS, and that it's not just an invisible part of the Internet. If no one ever uses GoogleDNS, this whole debate would be a major win for that and no other reason.

That's also why the decline of the use of FTP is a shame: less and less people will know how to spell "anonymous". I once compiled a version which required "miscellaneous" as anon password, just to wind up some people - it was very, very funny watching that..

That was the gist of my comment: just be aware of the possible risk. If I really had a problem with DNS I'd change it - plenty of resources to choose from, and some are in countries with strong privacy laws. What I simply do NOT want to do is enhancing an already extensive dataset they have with even more information, so I'll say "stop" here. If others find that OK, well, good for them. It's just that some arguments are plain irrational, and that has intrigued me because it means people take an emotional decision. Weird. But also not my problem :-)

Cheers :-)

I don't really get it.

[Corporate+Troll]

Yes, it might be useful for people whose ISP DNS server is slow. That didn't happen to me since my dialup days. Besides, now I simply run my own caching DNS server. It's not hard to set up at all.

Re:I don't really get it.

[ShadowRangerRIT]

Why waste the power? A personal use DNS server is a waste; if your ISPs DNS is slow there are always alternatives (I used Verizon's DNS for years when living in an area where Comcast DNS performance was slow). I know DIY is fun, has geek cread and all that, but your local machine will cache frequently accessed sites anyway, and the benefit gained on uncached sites will be seen so infrequently that you're not benefiting.

Re:I don't really get it.

[fnj]

Guess where your caching DNS server gets its feed.

Re:I don't really get it.

The authoritative DNS servers published at NIC?

Re:I don't really get it.

[ftobin]

...your local machine will cache frequently accessed sites anyway...

You need to be more clear about how this caching might actually take place; there is no magical program that would do this...except for a DNS server. On Linux you could be talking about nscd, but this doesn't necessarily abide by the DNS caching protocol correctly.

Re:I don't really get it.

[Alrescha]

"You need to be more clear about how this caching might actually take place; there is no magical program that would do this...except for a DNS server."

In Windows, I believe it's called the DNS Client service, on OS X it's called lookupd.

A.

Re:I don't really get it.

[Jellybob]

This also helps in situations where your ISP is highjacking responses stating that a domain doesn't exist, and rerouting them to a search engine.

It's all very well having that happen for HTTP requests, but it can cause havoc with things like e-mail.

Re:I don't really get it.

[Corporate+Troll]

Because I have a server anyway and the little load a DNS server adds won't cost much more energy. (Just use something like a Soekris as a server for crying out loud)

(Offtopic: it's "Geek Cred".)

Re:I don't really get it.

[Corporate+Troll]

From here

Re:I don't really get it.

[causality]

Yes, it might be useful for people whose ISP DNS server is slow. That didn't happen to me since my dialup days. Besides, now I simply run my own caching DNS server. It's not hard to set up at all.

I wonder about this myself. Google is a marketing company so you would generally expect them to always appeal to the widest audience possible. As valuable as DNS service is, it's also not something that average users care about or think about. Most users who are dissatisfied with their DNS performance would say "the Internet is slow today" and not "I am experiencing unusually high latency from my ISP's DNS server". This is just a guess but they seem to be targeting two broad categories of user:

• Users who are specifically dissatisfied with their current DNS performance. These are users who are knowledgable enough to understand what DNS is and that they can change servers, yet are unable to or reluctant to run their own caching nameserver.
• Users who currently use OpenDNS, or who use an ISP DNS server that also breaks NXDOMAIN behavior in order to serve advertisements. Google also wants to serve advertisements, of course, but they do it without breaking the DNS protocol. For these users, switching to Google's server would be a way to protest these practices by voting with their feet.

Personally, I just run my own caching nameserver.

Re:I don't really get it.

[martinmarv]

My ISP (o2 broadband in the UK) has a particularly bad set of DNS servers that regularly seem to error. Somehow, resetting the router helps, but I think that's because it just gets forwarded to a different pair of o2's DNS servers.

As a result of this, I've switched to OpenDNS, which hasn't errored at all, so far (about 6 months). However, I'm probably going to try Google's offering because I'd prefer to get a NULL response than a search page if I hit an unresolvable URI.

Re:I don't really get it.

[gad_zuki!]

>Why waste the power? A personal use DNS server is a waste;

Who is proposing a physical box? Just run bind as a service. How much cpu power is that thing using? Honestly? Pennies a month to run the service?

Windows users can use the bind win32 port or Treewalk.

Re:I don't really get it.

[DarthBart]

[a-i].root-servers.net

Re:I don't really get it.

[Fastolfe]

At the very least, if you're going to run your own DNS server, have it forward queries to a DNS server that actually sees a lot of traffic. Otherwise, when you visit your popular web sites, their DNS records with low TTLs will be stale and require a trip to the Internet to resolve. Even if your ISP's DNS servers are slow and distant, they probably still see a lot of use from the ISP's other customers, and likely have all of your popular web sites' DNS records freshly cached.

Yeah, sure, give them even more information

[cheros]

I find it amazing that nobody seems to notice that adding an ECHELON and a DCS1000 feed to Google is making it like the NSA, but where people actually VOLUNTEER data. In addition, it's Terms of Service give it more legal freedom to use and abuse your information and intellectual property than even the US border control can with accessing laptops of people entering the country.

It appears 8+ years of indoctrination is paying off big time - nobody appears to remember that privacy is a basic right. All it takes is some BS about "not being evil" for people to miss the shocking depth to which they can access all your personal data. Even the stuff they don't hold themselves will come up through the search engine. By matching up DNS records they will be able to add your entire Internet activity to your identity.

That's going to be fun when you catch some sort of virus downloading porn - and the next time you apply for a job..

Re:Yeah, sure, give them even more information

[maxume]

I might find it financially unfortunate to be denied a job for something I did on my personal time, but I would feel a little bit better about it knowing that I wasn't working for a bunch of fuck-nobs.

Re:Yeah, sure, give them even more information

[Gothmolly]

The difference is that Google is offering value for your data. If you find the data more valuable than their service, don't use them.

Re:Yeah, sure, give them even more information

[Chyeld]

Sometimes freedom isn't about saying no, but about the fact that you can. I can't say no to the border patrol, I can to Google.

More relevant, I have knowledge of the border patrol misusing their power and little evidence that they've actually helped me in any concrete manner. The revese holds for Google.

Re:Yeah, sure, give them even more information

[cheros]

"if you have nothing to hide, then there isn't an issue"

Oh dear, so you post your salary and full bank statements on Facebook, leave the curtains open at night and never close the bathroom door to take a leak..

Universal declaration of human rights, article 12. Read it.

Re:Yeah, sure, give them even more information

[cheros]

That's exactly my point - I *know* the value of my data because it's my job, and you won't catch me using Google for anything more than searching (usually via Scroogle).

That was indeed the whole argument behind my remark: look, more data you hand off - which implies I won't. I resolve in a country where data protection is very strong, so anyone wanting to use those records will still have to follow proper process. I am perfectly OK with someone having access to that data for defendable, legal reasons.

I'm absolutely NOT OK with someone doing this at will and on a whim, such as is happening in the UK right now, and I will thus certainly not put any data in the public domain where it can even be used without any legal control (and no, I don't believe what they say, your average con man will also not tell you he's about to rob you blind - I believe things that can be proven and are transparent).

The UK has sleepwalked into edge-to-edge CCTV coverage because it didn't recognise the rights encroachment, and I see pretty much the same with Google, unchallenged. All you need is ECHELON and CARNIVORE (sorry, DCS1000) feeds added and you have another NSA - but this time with data voluntarily submitted..

Am I paranoid? Probably. Better safe than sorry - you cannot erase data on the Net..

Re:Yeah, sure, give them even more information

[bigstrat2003]

There's a very big difference between "government forcibly taking data from me" and "voluntarily giving up data to Google in exchange for services".

Furthermore, I simply don't care and never have. You, along with others who raise concerns about privacy interests, miss that very basic possibility. Most people just don't give a damn.

Re:Yeah, sure, give them even more information

[admdrew]

Well, I never close the bathroom door to take a leak, but that's an entirely different issue...

Re:Yeah, sure, give them even more information

[Aeros]

damn ...lighten up

Re:Yeah, sure, give them even more information

[Haymaker]

Exactly. It's ok to worry about privacy, but if Google wants to use what random unimportant things I search for to be read by software (never people) to give me ads that are a) relevant, b) entertaining, c) (and most likely) never seen by me due to AdBlock, they're free to do as they please. Especially if mining my (again, trivial) data contributes to the open source/philanthropic efforts put forth by them.

Re:Yeah, sure, give them even more information

[Eil]

Listen. This was discussed ad nauseum in the previous Slashdot article. That which you rant about might be applicable to all of Google's services except DNS.

RTFM. But since you can't be bothered, I'll spoon-feed you the details. In a nutshell, the only thing that could identify you to Google's resolvers is your IP address. Which, by the way, is neither private or personal. Google has no way of knowing whether there is one person behind hundreds of IPs or hundreds of people behind a single IP. Nevertheless, the IP-based logs are used only for performance and abuse monitoring and are deleted after 24-48 hours.

Of course, you could get all tinfoil hat and say that Google is simply flat-out lying about their privacy policy. Or that they'll change their tune in a few years after everyone's using the service. But it's always your option to just use your ISP's resolvers, or OpenDNS, or set up your own damn resolver. It's hard to replace Google, The Search Engine, but it's trivial to replace Google, The DNS Resolver and I think they know that.

Re:Yeah, sure, give them even more information

[cheros]

Sigh. Let's start with some basics (and no, I don't rant, but the reasons why I'm more informed than you appear to think are my own).

(1) Information given is information lost. It's gone. There is no undo button, the data has leaked. Ergo: start thinking about information BEFORE you hand it over.

(2) You don't know NOW how that information is going to be used LATER. You did at least allude to that by acknowledging that they could change their terms later.

Now for the more advanced stuff.

(3) The myth of the anonymous IP address. Sure, a lot of people into file sharing would love the IP address NOT to be significant, but that's ignoring reality - the technical issues that the RIAA has are a consequence of long term observation - here you are talking about a sequence of events in less than a second. In the days of dialup, an IP address was a heck of a lot more transient than it is now - especially for home users. Sure, a corporate address is usually a presentation of a NAT so it's harder, but standard Jo Blow ADSL gives you a long term correlation between a user and their DNS resolution for sometimes a week. If you want a new pool IP address you actually have to kill your router for a good half hour or so to allow your DHCP lease to time out. Not to mention that it's not going to take long for geo-tagging to identify the ADSL users from the corporate ones and so assign probability.

(4) Synchronicity. Google query (unique UID) followed by a sequence of DNS lookups. I think you can assume with high probability that it's the same user, and keep tracking him/her/it for a set span of time. Various appoaches, but mosaic matching is the easiest, you just have to vector the match probability down over time.

It doesn't take a tinfoil hat. Google may well be very true about what they do now. But that has no bearing on what they'll do tomorrow, what some marketing droid dreams up tomorrow, or what they will be asked to do tomorrow. That they "can be replaced at any time" has no relevance whatsoever, the mainstay of the sheep out there don't realise what they're doing (witness Facebook, Picasa et al). They will only come bleating when it's far too late, like UK citizens now worried about CCTV.

I'm perfectly OK with anyone using Google for whatever. Not my problem, have a nice day. Just don't ask me to walk along with the sheep.

Re:Yeah, sure, give them even more information

[cheros]

Fine, tell me how much you earn. And take down all your curtains. Oh, and just discuss that new business idea with a loudhailer so someone can set it up faster than you. And see just how long you can visibly take notes of what that muscular bloke says when he's making a phone call to his girlfriend. Make sure you have dental coverage..

There is a reason why privacy was named as a basic human right. There is also a reason why there have been unprecedented levels of indoctrination against it when two governments in particular mounted the biggest raid on your tax money ever. Interesting that few see the correlation..

Re:Yeah, sure, give them even more information

[cheros]

Oh, it's very entertaining to see everyone coming out of the woodwork defending Google against any common sense - it's fascinating. I saw that first happening when they got rapped on the knuckles in Japan for not respecting local culture, and the same happened to them in Switzerland. They have done a good marketing job, but that doesn't make them right, or removes the risk of what they do.

There is no "good" or "bad" Google - it's simply a matter of analysing the possible risks, and deciding if you want to take them or not. And I choose not to, simple :-)

Re:Yeah, sure, give them even more information

[cheros]

Especially if mining my (again, trivial) data contributes to the open source/philanthropic efforts put forth by them.

But, but, Bill Gates does philanthropy things too! But you're not using Bing? You are aware you are depriving people of charity now, aren't you?

(no, I'm kidding).

Re:Yeah, sure, give them even more information

[Blymie]

The issue with many corporations storing data, is not necessarily what they are doing with that information now. It is:

1) whether or not their servers are infiltrated, and therefore the data is mined by other, untrustworthies

2) what happens when the government decides to demand information

Google has had many break ins. Even the best controlled environment can be compromised, and Google's sheer size and scope, indicates a greater exposed presence. I would suspect that out of their vast number of offices, their vast exposed services, that on some level they are currently, and always will be, compromised.

One also has to consider that in any corporation of Google's size, there will be illegal activities by various employees, primarily for financial gain. There will also be various government agents for the same reason, undercover and otherwise working for Google in good stead.

On top of this, Google has willingly handed over information to governments around the world. They comply with court orders and domestic law, which makes sense for any organization. Such as the case is, you not only have to worry about today's data, but what happens to any data they have ever had, and kept. Law enforcement agencies could simply seize all backups, seize current backups and work on restoring older backups on those same tapes, etc.

One must always be concerned with how data collected today, may be used two years from now. Look at the whole Bush fiasco. Telcos, WITHOUT EVEN ANY LEGAL REASON TO DO SO, simply handed over data illegally to the government. The change happened almost instantly after 9/11, and within a few months, millions of citizens were suddenly being watched by government agencies in the US.

I really don't see how immune Google is to this. How many gag orders are they under right now? How many breaches have there been?

You don't know, I don't know, but it would be foolish to assume that when Google says they only retain for 48 hours, that this doesn't mean records are not kept by other means.. some not even in Google's control...

Uncaged

[chicago_scott]

Ahhh... freedom. Finally I can view YouTube from work. That's Google! ...until the network admins block these DNS servers...

Freedom for a day is better than no freedom at all!

Re:Uncaged

[timestride]

Your network admins fail if they think controlling internet access through DNS entries alone will keep you caged.

Re:Uncaged

[chicago_scott]

They fail at more than that.

Re:Uncaged

[Kaboom13]

If you wanted to block outside dns, why would you blacklist instead of whitelist? Any decent firewall should be able to block DNS requests leaving the network except from the local dns server.

Google DNS Benchmarks

[bramp]

I ran some tests against Google DNS and some other DNS providers to measure if Google DNS was actually faster than say OpenDNS, or my local ISP. The results showed OpenDNS completely outperformed Google, but Google did do better than two local ISPs. Read my blog entry about this.

Re:Google DNS Benchmarks

[Frankie70]

My Ping times

- ISP's DNS server - 23 ms
- OpenDNS - 264 ms
- Google DNS - 367 ms

Re:Google DNS Benchmarks

[bramp]

wow, Where are you? and how many hops (with traceroute) are you away from each server?

Limited privacy problem for cached routers

[cenc]

So I am giving Google DNS a try on my networks.

I do not see the privacy issues, as they are very limited if you are using a cache on your router with Google as the DNS server. Google gets to see one lookup, and then my home router (with dnsmaque) serves any repeat visits for me or the other computers on my network. For the majority of the sites I visit on a regular basis, my router provides the DNS.

I would suspect that a majority of people using home routers have some sort of cache now in the firmware that does similar work, in their OS, or their browser. It is not like Google is able to see me hit their DNS (although I am sure that is true for some users), every time I want to visit a site again. It is of little value, other than in the most general sense of determining what sites are popular.

Re:Limited privacy problem for cached routers

[Dogun]

IIRC Google has rate limiting in place to prevent large DNS servers from forwarding to Google instead of recursing themselves.

Re:Jenny

[bunratty]

Google, Google, who can I turn to? 8.67.53.09

Re:first lookup

One advantage is that unlike 4.2.2.x, you have explicit permission to use this one.

Everyone will have a web presence (if not already)

[strangeattraction]

Think about it. Eventually each of us will have our own DNS entry to identify our individual web presence. The things we make available to do business, social networking etc will be identified through DNS. Why wouldn't Google want to be in on this? Just because there is a profit motive doesn't necessarily mean it is nefarious. This will allow them to add value at a fundamental level. I can see a day when Facebook is irrelevant and people create there own ad-hoc social networks through their own web-presence.

Re:Kaminsky DNS flaw == HOGWASH

Dan K has been on /., never could cite a single example of an in-the-wild, widespread exploit of the Kaminsky DNS flaw.

Kaminsky Bug == HOGWASH

Yes. A severe security flaw in one of the fundamental layers of the internet is hogwash... because it's not CURRENTLY being widely exploited 'in the wild'.

Please, make sure I never, ever, EVER, hire you to work anywhere near my network.

Already banned in China

[dUN82]

Reports from my friend inside the GFW, both DNS servers already banned by the Chinese government...wth...and openDNS stayed untouched for like ever...

Re:Already banned in China

[Wolfier]

Think about it this way. You know, given the Chinese obsession over the number 8, there must be some way to make better and more profitable uses of 8.8.8.8, so they have reserved that.

Re:Already banned in China

[nuckfuts]

I was actually wondering if they obtained those IP addresses (8.8.8.8 and 8.8.4.4) specifically to appeal to Chinese people.

The number 8 is considered very lucky in Chinese culture. The appeal of the number 8 is noticeable here in Vancouver, where we have a large Chinese community. It appears on many personalized licence plates, for example, and I've heard Realtors claim that houses with 8's in the address generate more interest from Chinese buyers.

Re:Already banned in China

[sydneyfong]

Not for 4, which sounds similar to "death". 8.8.4.4. is not exactly a good number. If you must try to interpret that in the "chinese way", it probably means get rich and then die...

8.8.8.8 is a really nice number though, in the Chinese culture (and superstition).

I don't think it has anything to do with appealing to the Chinese though, the numbers are nice and easy to remember in their own right. Even in binary.

Re:Already banned in China

[dUN82]

So you think the kind of Chinese people that is obsessed with 8 is the kind knows how to change his DNS on his router?

% of users that don't use DHCP assigned DNS

[HockeyPuck]

What percentage of total users use DNS that is not assigned from their ISP? I would guess a good percentage of the /. crowd uses a DNS that is not assigned via their ISP. But out of the total population of internet users, using non-IPS DNS servers has got to be pretty small.

Re:Jenny

[pwfffff]

Obligatory pedantry:
86.75.30.9

Re:Still goes through my ISP, right?

[pwfffff]

I was wondering the same thing... people have been using the fact that ISPs don't even say they won't log as a retort against the argument that Google might be spying, but if the ISP can still spy on it as it's passed to Google then you'd essentially be pissing away your privacy to TWO companies. Not like your ISP doesn't get everything else anyways...

how is opendns better than sitefinder?

They redirect to their own pages to make money just like Sitefinder. Everyone called Sitefinder evil, but because they are called "open" people seem to let them get away with this. Google's DNS won't do that at least.

Also, I seem to remember people catching OpenDNS hijacking google.com to inject different ads (again, to make money), and their excuse was that they were "protecting" their customers from Google. If they are doing that now it would be reason alone to not use them. I don't want my DNS responses mangled or filtered and that seems to be getting more common with even legitimate ISPs.

One place which OpenDNS might be better is in privacy. Someone should do a side-by-side comparison of their policies.

"Small range of ports"? Really?

[maXXwell]

"In his view, it looks like the source ports are sufficiently random,
even though they are limited to a small range of ports."

The distribution graph appears to show Google resolver using random ports
between 32768 and 65535. While that's only half the ports available,
it's misleading to characterize it as "a small range of ports".

cache != privacy

[nuckfuts]

I do not see the privacy issues

Having your own DNS cache simply means that Google will only see unique queries from you. Even if your cache never expired any entries, they would still have a record of every single site you visit. They simply wouldn't know how many times you visited.

Do you see the privacy issues now?

Re:cache != privacy

[cenc]

How do you think most people get to that unique site these days they have never visited before?

They GOOGLE IT!!!

My point is, with exception of some limited type in traffic, Google already has a lot of this info.

So, if you are really concerned about privacy and Google (I do believe this is an issue), you have to stop using Google altogether.

Re:cache != privacy

[nuckfuts]

My point is, with exception of some limited type in traffic, Google already has a lot of this info.

This has nothing to do with your original assertion that DNS caching limits privacy problems.

So, if you are really concerned about privacy and Google (I do believe this is an issue), you have to stop using Google altogether.

That would not be sufficient. You would also have to avoid using Google Public DNS, with or without caching.

Re:cache != privacy

[cenc]

Yes, for the paranoid go out and setup your own.

In that case, we can go down the slippery slope all the way to the root servers.

Do you really think those that we have to be worried about do not have access?

Re:cache != privacy

[Haymaker]

every single site you visit.

Every single site someone visited. They don't link it with anything else, or keep your IP address, etc

Re:cache != privacy

[nuckfuts]

You seem to be incapable of getting the point.

You started this thread by asserting that DNS caching on your router lessens the privacy issues associated with DNS. I disagreed with that assertion.

I'm not saying anything about paranoia, slippery slopes, root servers, or who already has access to private information. I'm saying that DNS caching does practically nothing to enhance privacy. Period. This is a technical fact, not an opinion.

Re:cache != privacy

[cenc]

Perhaps I can be a bit more clear about this.

The point is that what any DNS server gets is what sites you visit (or at least request a lookup for them) and how frequently you visit them with direct request (assuming no cache involved).

By using a local cache say in your home router or business router, you are depriving them of how frequently you visit those sites by not hitting their server with a lookup request 1000 times a day.

Say you have a small biz with 50-100 computers, that can be a lot of dns request that never get past upstream to anyone. With a cache of even a few thousand addresses, I bet that can cover almost all the most frequently visited sites for a home or biz.

One hit does not make a pattern. Obviously there is the whole ttl issue, but that in theory could be ignored also.

Honestly, the bigger concern I would think is Google somehow deciding to rank web sites by popularity based on how frequently DNS lookups are requested. Which because of caches, I would assume the guys at Google have dismissed as being an unreliable indicator of site popularity if they are doing their job.

So, my claim is that you are increasing your privacy to some limited extent (or at least google DNS is no more a threat than any other DNS server) by making sites you visit just once the same as sites you visit all day by only doing one dns lookup for both sites.

Re:cache != privacy

[cenc]

The issue is about privacy. What can you tell about someone by how often they visit a site and what sites sorts of sites they visit?

The IP address must be registered in some fashion, as they announce they will be keeping geographical info such as city and towns. They do have access to that information each time you hit their server.

You call that a small range?

From the picture in the article it looks like they have 15 bits of entropy in the port number and 16 bits of entropy in the ID. That's a total of 31 bits of entropy out of 32 theoretically possible. They also add entropy through the case of letters in the domain name itself (and maybe also the lower bits of the IP address, but I haven't verified that). Sounds like this all adds up to 40 or more bits of entropy. With 40 bits of entropy the chance of successful poisoning would be vanishing small.
 
How do they do the asynchronous updates of entries that are about to expire? If they randomize the timing of those and use TCP rather than UDP they can probably add another 20 bits of entropy right there.

Why don't google searches simply return IP

[goombah99]

If google has the DNS then Why doesn't google return the text-url when they could just return the numerical IP address in the link directly? That way you could skip the DNS step entirely. FOr sites you visit a lot they are probably already cached so a large fraction of uncached links come from google searches so this optimization might matter and it certainly would make google searches seem faster

Re:Why don't google searches simply return IP

[etnoy]

If google has the DNS then Why doesn't google return the text-url when they could just return the numerical IP address in the link directly? That way you could skip the DNS step entirely. FOr sites you visit a lot they are probably already cached so a large fraction of uncached links come from google searches so this optimization might matter and it certainly would make google searches seem faster

When dealing with HTTP, you don't only have to work with connecting to the correct IP, you also need to connect to the correct hostname. HTTP uses a Host: header that indicates which host the client wishes to receive from, making it possible to host several different domains on a single IP. Thus, you can't just return an IP adress in the search result, that would be useless.See the Apache vhost documentation for more information about the Host: header and how it is used.

/e

Re:Why don't google searches simply return IP

[goombah99]

Okay, but still why not return the IP already looked up right in the search and bypass the DNS.