Is there a safe alternative to OpenDNS?

I use the subject DNS service. It works BUT I've come to a point where I'd like to make a change.

BUT to what? Any alternatives?

 

I like http://www.privacyfoundation.de/service/serveruebersicht/

 

I don't understand, what's unsafe about it?

If anything, it is the safest DNS service in existence because it is compatible with DNSCrypt.

 

OP didn't say that OpenDNS is unsafe.

 

Norton perhaps? Unless you're looking specifically at paid services. My opinion is that OpenDNS as a free service is all but useless in security. If there is no malware domain protection, then it's mostly useful if your ISP DNS is terrible.

 

Look at these:
http://my.opera.com/rejzor/blog/list-of-public-dns-services

I'm not aware of any others that are well known or reliable...

 

What's wrong about the DNS services offered by
Norton and C-O-M-O-D-O ?

 

Right, I just want a change.

BTW I'm not saying there is anything wrong with these thread suggestions!

 

Well, there are censorship issues

 

Censorship issues related to which service?

 

What do you mean by "safe"? Are you wanting a DNS service that filters out bad sites? If you're just looking for performance I like Google DNS. For best security I currently use OpenDNS with their DNSCrypt addon.

 

I've been on OpenDNS for years now BUT I'm not sure if I have this DNSCrypt addon.

What is it's purpose?
In general terms how does it work?

https connects are already encrypted?

 

Some info and answers here:

http://www.opendns.com/technology/dnscrypt/

 

Why switch from a good thing? OpenDNS is probably the most secure DNS out of the ones listed.

 

I'm not going to get into this issue, because it's political, and inappropriate here. Also, doing so would invoke Godwin's Law

 

DNSCrypt is a separate app that works with OpenDNS. It specifically encrypts DNS traffic for all web sites. I feel this adds some security when browsing over open wifi networks. It may be redundant for HTTPS sites. A VPN is a better solution for open wifi IMHO, but DNSCrypt is a good idea if a VPN is unavailable.

 

It's unavoidable. You've already started down that road by backing away from the topic. Isn't that exactly what they used to do?

 

Yes, but one should download the newest version from https://github.com/opendns/dnscrypt-proxy/downloads

 

Yes, but this site says:

So it should also work with other DNS providers but I haven't tried that yet, though.

 

Norton DNS.

 

Incorrect, those files are the standalone proxy which aren't user friendly. He was linked to the Windows GUI installer, the page he linked has the latest version of that.

 

Yes, it is an important issue. Each group, nation, etc has its unmentionable, off-limit topics. And each does what it can to suppress infringing content. One strategy is DNS blacklisting/takedown. Using alternate "uncensored" DNS servers helps one get around that.

What's problematic is that technological discussions often drift into politics and morality.

Anyway, that's why I mentioned The German Privacy Foundation's DNS servers.

 

Sorry guys but this is my thread and I don't want it deviated into cencorship and have the thread hyjaked that way.

If somebody want to start their own thread on that go for it! Good luck.

I'm not looking to be pushed to stay with OpenDNS I'm wanting to have an alternative.

 

I've used OpenDNS for quite some time, but without the addition of DNSCrypt. After installing DNSCrypt virtualized just to try it out, I noticed that the GUI is very simple with only four check box options. So, because I'm already using OpenDNS, does the box "Enable OpenDNS" need to be checked -- or is that already assumed and should be left unchecked?

Also, is there any way to be notified of updates to DNSCrypt -- and is an updated version just installed over the top of an older version?

 

I would keep the "enable OpenDNS" box checked. The only box to leave unchecked (unless needed) is the "DNSCrypt over TCP 443". If you look at the lower edge of the GUI window it states the version and also "latest". When I started using it they were at beta 0.0.5 and I can't remember if the next version was pushed out automatically or not. You can also check version information by clicking on the "release notes" tab.

Edit: I just confirmed that if you turn off "use OpenDNS" in the GUI it does in fact disable OpenDNS and hand off DNS lookups to the router.