On Thu 2018-11-01 12:58:21 +0100, intrigeri@??? wrote:
> anonym has reported similar issues but he cannot see them if he uses
> the IP address directly, which seems to confirm the hypothesis of
> overenthusiastic DNS caching on exit nodes. Nothing we can do about
> exit nodes whose DNS resolver/upstream does not honor TTL :/
> Hopefully they invalidate their cache after 24h or so.
Maybe we should be encouraging/facilitating the use of DNS-over-TLS or
DNS-over-HTTPS to a resolver with known-good policy? both of those
protocols can themselves run over Tor, fwiw, since they use stream-based
transport over TCP.
--dkg
