Actions
Feature #15465
open
Update dnsmasq to version 2.90 to support resource record filtering
Status:
New
Priority:
Normal
Assignee:
-
Category:
DNS Forwarder
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Default
Description
Apple (and likely others) are using a relatively new type of DNS record.
Service binding and parameter specification via the DNS (DNS SVCB and HTTPSSVC)
https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-svcb-httpssvc
If you are using Safari to access local network resources by name. Safari will query for type 65 HTTPS records. These are forwarded by dnsmasq to upstream name servers. This information leak of local network names/resources may be undesirable to the user. Version 2.90 of dnsmasq introduces the following:
Add --filter-rr option, to filter arbitrary RR-types.
--filter-rr=ANY has a special meaning: it filters the
answers to queries for the ANY RR-type.
This allows you to filter these records. This can be added to the custom fields option, or alternately would be nice to have a checkbox to filter these RRs if desired.
No data to display
Actions