On Thursday, September 10, 2020 4:27:30 AM MST alciregi(a)posteo.net wrote:
On Thu, 2020-09-10 at 12:06 +0200, Eugene Syromiatnikov wrote:
> >
> > These DNS addresses are bundled upstream in systemd. And they are
> > used
> > in the event of a misconfiguration of your network settings, isn't
> > it?
> > However they are easily customizable in /etc/systemd/resolved.conf
> > (FallbackDNS option)
>
>
> It's about the distribution's default setting, not a configuration
> possibility.
"Which servers are used (or any at all) as a fallback is a compile-time
as well as a runtime option. If you don't like the upstream defaults,
then please work with downstream to pick different options or make the
choices locally in your configuration files."
As a concerned user, you can configure the FallbackDNS option in
/etc/systemd/resolved.conf and put whatever DNS you prefer. Google and
so on will never be contacted.
Obviously the distribution can put different DNS in systemd at compile
time, or provide a default resolved.conf file where FallbackDNS is
uncommented and filled.
It's important to note that this is also a major change in behavior.
Currently, when no DNS servers are configured, your system will only perform
local lookup, and will not look at an external DNS server.
--
John M. Harris, Jr.