As a new domain tagging moderator at OpenDNS Id like to get a feel for what DNS services people use other than the default from their ISP and why. What features would you like to see improved with your current choice?
I use Norton ConnectSafe that is Norton DNS. It's faster than Comodo, Open, Google and my ISP. It's also more secure.
My ISP on my router (it's the fastest and have never had issues with it) and Norton on my notebook (increased security).
I have tried most of those and found no clear benefit over using those provided by my ISP, which was faster in most cases.
From my ISP's I went to OpenDNS. Then tried many (Comodo,Norton,Google,Clear Cloud + some others) Only to return to OpenDNS.
Every ISP is different,For Example My ISP has safe search which warns of adult sites but does nothing to avoid known malicious sites that maybe malware. In my case Norton DNS is with out a doubt a safer alternative then my default DNS and just as fast if not faster.
Security first: OpenDNS due to DNSCrypt. If it's coded anything like the Windows version, you really don't want one.
I use the two Norton addresses as primary and alternate, with Comodo and Google behind them in case they aren't working. I use Public DNS Server Tool 0.91 to facilitate that.
I use OpenDNS + DNSCrypt. I also have my ISP's in place, just in case. I'd use Norton DNS, if they ever implement a DNSCrypt to their own servers. Why not? The code is open sourced.
I've found no difference in speed either. The main issue is trust. But unless you're using a VPN/proxy, using an alternate DNS is rendered pretty moot anyway in this regard. They can see what you're doing anyway. But if you use a VPN, and don't want anything leaking to your ISP (whom you don't trust), then it makes sense. And it applies in my case. I personally use Comodo Secure DNS. I didn't like seeing them ask for all that personal info. on OpenDNS's site. I don't like that DNSCrypt runs on .NET Framework. And I noticed disconnects since trying out their servers. So it's back to Comodo for me. That and the ones my VPN assigns me.
Yeah? Haven't tried it but I really should as I do occasionally go into Windows. Trust me though, installing is a pain. I finally managed to and wrote a guide for it (I don't really like linking to my blog, feels like I'm asking for hits lol but it's relevant) and you can see there are quite a few steps. I'm really happy to see this though: Code: dnscrypt-proxy 873 Full RELRO Canary found NX enabled PIE enabled Full NX, PIE/ASLR, RELRO, and Canary support. It's impossible to apparmor right now. I need to delay its boot or something first but it runs as a separate user. I'm really glad they took the time to make this internet facing service really secure. edit: I've got apparmor working for it. Had to restart the process with rc.local.
Have always used my ISP until just recently when I decided to try Norton DNS. so far so good, seems very fast, and hopefully it makes things a little safer.
As I stated in another post a while ago, I'm running Unbound as (caching) DNS resolver on my computer, so I never rely on my ISP or an external DNS service.
I used to use OpenDNS, because my ISPs DNS was not 100% reliable (some days would have problems resolving specific websites in a timely fashion). Since I have had a new cable modem seems to be perfect. I may try OpenDNS again when I have time.
If I am not mistaking, Unbound queries a list of root servers. Of course, you can configure to use any other DNS server and just to relay the queries, but I use it as a DNS server, and not as a relay.
Norton DNS since is safer and faster than my ISP. I used FamilyShield before, but it blocks too many legitimate webpages as porno.
Maybe you could do one as a first project, and share it with the open source community. Or, don't you enjoy working for free?
