Skip to content

Dummy DNS Server #164

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
evgeniy-scherbina merged 1 commit into from
Feb 4, 2026
Merged

Dummy DNS Server #164

evgeniy-scherbina merged 1 commit into from
Feb 4, 2026

Conversation

@evgeniy-scherbina
Copy link
Collaborator

@evgeniy-scherbina evgeniy-scherbina commented Feb 2, 2026
edited
Loading

Closes: #108
Inspired by https://coder.github.io/httpjail/advanced/dns-exfiltration.html, but with necessary adjustments to avoid requiring CAP_SYS_ADMIN permissions

Implement dummy DNS server inside network namespace to prevent DNS exfiltration

Summary

This PR implements a dummy DNS server that runs inside the network namespace to prevent DNS exfiltration. All DNS queries (UDP/TCP port 53) are redirected to a local dummy server that responds with dummy IP addresses, ensuring that no real DNS resolution occurs and preventing information leakage through DNS queries.

Why a dummy DNS server is safe

Boundary’s allow/deny decisions do not use the IP address that DNS returns. The proxy evaluates rules using the Host header (and path, method) from the HTTP/HTTPS request. Flow:

  1. The jailed process does a DNS lookup (e.g. for api.example.com) and gets a dummy IP (e.g. 6.6.6.6) from our dummy server.
  2. It connects to that IP and sends an HTTP request with Host: api.example.com.
  3. The transparent proxy intercepts the connection and inspects the Host header to decide whether the request is allowed.
  4. The actual resolved IP is never used for policy; only the hostname in the Host header matters.

So returning a dummy IP for every DNS query is safe: applications still connect and send the correct Host header, and boundary continues to enforce rules correctly. The dummy DNS server only blocks real DNS resolution (and thus DNS exfiltration); it does not change how HTTP/HTTPS traffic is allowed or blocked.

Changes

New Features

  • Dummy DNS Server (dnsdummy package): A minimal DNS server that responds to all queries with dummy IPs:

    • A records → 6.6.6.6
    • AAAA records → 2001:db8::1
    • Supports both UDP and TCP protocols
    • Runs in-process as goroutines (no separate subprocess)

  • DNS Redirection: All DNS traffic (port 53) is redirected via iptables DNAT to the dummy server listening on 127.0.0.1:5353

  • --use-real-dns flag: New CLI flag to opt-out of dummy DNS and use real DNS resolution (allows DNS exfiltration)

Removed

  • --configure-dns-for-local-stub-resolver flag: Removed this deprecated option and its associated code path (local_stub_resolver.go)

Implementation Details

  • In-process execution: The dummy DNS server runs as goroutines inside the child boundary process (no subprocess spawning)
  • Best-effort sysctl: The net.ipv4.conf.all.route_localnet=1 sysctl is set best-effort (errors ignored) to allow DNAT to 127.0.0.1;
  • Error handling: Enhanced command runner to support "*" as ignoreErr pattern to ignore any error

Behavior

Default (dummy DNS enabled):

  • All DNS queries are intercepted and redirected to the dummy server
  • DNS exfiltration is prevented
  • Applications receive dummy IPs for all DNS lookups

With --use-real-dns:

  • DNS queries use the environment's real DNS (e.g. container's resolv.conf)
  • DNS exfiltration is possible
  • Useful for debugging or when real DNS resolution is required

Related

Fixes DNS exfiltration vulnerability where processes inside the network namespace could leak information through DNS queries.

@evgeniy-scherbina evgeniy-scherbina force-pushed the yevhenii/dns-exfiltration branch from 8e0d244 to ca5d760 Compare February 4, 2026 17:48
@evgeniy-scherbina evgeniy-scherbina marked this pull request as ready for review February 4, 2026 17:48
@evgeniy-scherbina evgeniy-scherbina requested review from f0ssel and zedkipp and removed request for zedkipp February 4, 2026 18:15
@evgeniy-scherbina evgeniy-scherbina merged commit e16ba3e into main Feb 4, 2026
5 checks passed
@evgeniy-scherbina evgeniy-scherbina deleted the yevhenii/dns-exfiltration branch February 4, 2026 18:27
zedkipp
zedkipp reviewed Feb 4, 2026
View reviewed changes
dnsdummy/server.go
}

// Shutdown stops the servers.
func (s *Server) Shutdown() {
Copy link
Contributor

@zedkipp zedkipp Feb 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Did you mean to call this somewhere?

Copy link
Collaborator Author

@evgeniy-scherbina evgeniy-scherbina Feb 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it would be nice to call it in boundary-child process, after target process is finished, but it requires some refactoring.

dnsdummy/server.go
}
m.Answer = append(m.Answer, rr)
default:
m.Rcode = dns.RcodeSuccess
Copy link
Contributor

@zedkipp zedkipp Feb 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this default case is redundant because m.SetReply() does exactly this internally

@zedkipp zedkipp mentioned this pull request Feb 4, 2026
Merged
This was referenced Feb 5, 2026
Merged
Merged
@jdomeracki-coder jdomeracki-coder mentioned this pull request Feb 6, 2026
Open
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@zedkipp zedkipp zedkipp left review comments

@f0ssel f0ssel Awaiting requested review from f0ssel

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Prevent DNS exfiltration

2 participants

@evgeniy-scherbina @zedkipp