Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for June 20, 2013
Pencil, Pencil, and Pencil
Dividing the Linux desktop
LWN.net Weekly Edition for June 13, 2013
A report from pgCon 2013
Chrome will send everything you type in the address bar to Google (is there a prefered search engine setting ? I've have never checked).
Firefox will only send something to your prefered search engine when you type it in the search box.
Stallman: Ubuntu Spyware: What to Do?
Posted Dec 8, 2012 6:34 UTC (Sat) by mathstuf (subscriber, #69389)
Unfortunately, the Android Chrome only offers Google, Bing, and Yahoo! as search providers. I've set the browser icon on my launcher to instead just use DDG instead of using the stock New Tab page.
Posted Dec 8, 2012 10:28 UTC (Sat) by Lennie (subscriber, #49641)
If I start typing:
It will look up over HTTP:
Posted Dec 8, 2012 18:17 UTC (Sat) by tialaramex (subscriber, #21167)
* The fact that you're connecting to that specific site is revealed to anyone handling your DNS traffic, or your IP traffic, or to anyone doing transit.
* Slashdot redirects you to their non-SSL page anyway
But yes, in theory this particular auto-complete feature betrays things you might wish not to make public.
Posted Dec 8, 2012 18:26 UTC (Sat) by mathstuf (subscriber, #69389)
The DNS traffic can be minimized with a caching DNS server. The external request(s) then go out every so often, not every time you try to access the site. And if you have an array of computers using the caching server, things should be hard to correlate. Of course, a proxy can be inserted which does additional DNS requests for any site referenced on downloaded pages as well to help add some "plausible noise" into the streams.
> Slashdot redirects you to their non-SSL page anyway
That's…yet another reason to avoid slashdot? I kid, I kid. Only half. Maybe.
Posted Dec 9, 2012 1:48 UTC (Sun) by paulj (subscriber, #341)
yum install caching-namserver + beat NM into leaving resolv.conf alone somehow. +1
Posted Dec 9, 2012 2:37 UTC (Sun) by Lennie (subscriber, #49641)
Because we really don't want every desktop talking to the root or top level domain servers.
Posted Dec 9, 2012 6:45 UTC (Sun) by paulj (subscriber, #341)
Posted Dec 9, 2012 14:24 UTC (Sun) by Lennie (subscriber, #49641)
You really want every device with a browser to talk to the TLD servers for each of these domains ? (yes many are the same domain: so let's say 7 per website you visit).
That's doesn't add up.
Posted Dec 9, 2012 18:12 UTC (Sun) by paulj (subscriber, #341)
Perhaps this decreased a little since browsers started diverting things typed into the address bar to search engines.
However, the fact remains that the roots and TLDs *already* get hit by queries from *every* device with an interactive user, as well as any which happen to query for some misconfigured or no longer valid hostname. The . and TLDs are *already* setup to handle this kind of load, cause they already get it.
What the intermediate caches do is:
a) Not provide effective caching (distribution of queries is very long tailed) - see e.g. http://dl.acm.org/citation.cfm?id=581877 (and I think there's a more recent ISOC article that found the same thing)
b) Potentially add latency - it may take longer for your computer to get its answer.
c) Provide a huge, juicy target for attackers - a DNS poisoning attack is so much more efficient if you poison a widely shared cache.
Posted Dec 9, 2012 10:19 UTC (Sun) by tzafrir (subscriber, #11501)
Posted Dec 9, 2012 12:57 UTC (Sun) by hummassa (subscriber, #307)
Posted Dec 9, 2012 16:37 UTC (Sun) by cortana (subscriber, #24596)
Posted Dec 8, 2012 21:28 UTC (Sat) by geofft (subscriber, #59789)
(I do avoid Chrome because I dislike Google's corporate policies in general, but I think the individuals comprising the Chrome team are generally quite great about privacy issues like this.)
Posted Dec 8, 2012 21:32 UTC (Sat) by Lennie (subscriber, #49641)
Just checked now, with an updated version on Windows which I hardly use (so I assume that is the default setting).
Posted Dec 9, 2012 20:03 UTC (Sun) by literfizzer (guest, #31274)
Posted Dec 9, 2012 21:56 UTC (Sun) by mathstuf (subscriber, #69389)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds