|
What is it?
What this means is that unfortunately some applications and operating system functions
use your local DNS resolver in certain configurations.
What does it mean to you?
It means that while all your content is passing through an encrypted connection,
some of your DNS lookups could be going to your ISP's resolver. This means they could potentially tell which sites
you visit by the dns request and they could even block access to certain sites by blocking the DNS resolution for
those sites.
What is affected?
- VPN servers
- Socks proxies
What is not affected?
- CGI Proxies
- HTTP Proxies via ssh
Who is affected?
This is mainly an issue for older versions of Windows (XP/2k), but it can also
happen with other operating systems in some situations. The test just shows it is possible.
Socks users may find it happening because the app being used through a socks proxy may be performing local lookups
even with v5 checked. Change apps or try privoxy.
Can I test for it and see if it affects me?
There is a test you can run here
What can you do about it?
There are fixes
available here
|
