Unbound DNS Privacy

[paparts]

Hello,

I've been searching on details about unbound's cached data and I couldn't really find a good info. Does anyone know a link or does anyone know about what data are being cached by unbound? Because one requirement for our DNS server is the user's privacy and we don't want to store any client related information on our server. Does unbound only cache the "name - IP" relation only?

Thank you!

Allan

 

[junovitch@]

This is most likely better suited toward asking upstream directly. I would suggest the Unbound mailing lists. If you get a helpful answer a pointer to the mailing list thread here would be great.

 

[kpa]

Unbound is just a DNS forwarder and it caches DNS records without inspecting what is in the queries or in the resulting records. There are many ways to embed personal information in DNS queries and Unbound will not attempt to filter such queries by default, you'll have to write plugins (for example in python, Unbound has python bindings) for such a task.

 

[Oko]

Unbound is just a DNS forwarder and it caches DNS records without inspecting what is in the queries or in the resulting records. There are many ways to embed personal information in DNS queries and Unbound will not attempt to filter such queries by default, you'll have to write plugins (for example in python, Unbound has python bindings) for such a task.

Could you kindly point to some reading/documentation on the topic?

 

[kpa]

Could you kindly point to some reading/documentation on the topic?

Here is one from the official documentation:

https://unbound.net/documentation/pythonmod/examples/example0.html

 

[paparts]

Just to answer this; To check a sample of the stored data, we can use the [FONT=Courier New]dump_cache
https://www.unbound.net/documentation/unbound-control.html[/FONT]