Open DNS requires JavaScript?

Discussion in 'privacy technology' started by m00nbl00d, Apr 5, 2012.

Thread Status:
Not open for further replies.
  1. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    These last few days I've been running OpenDNS, due to DNSCrypt.

    I wanted to see how OpenDNS block pages looked like, so I went to -https://www.phishtank.com/phish_archive.php , and started searching for reports labelled with VALID PHISH.

    I entered those sites, and I could enter them fine, except for one, where although there was no block page, I could see from the title bar, that BitDefender TrafficLight was blocking it.

    I block JavaScript, so I couldn't see the block page that TL was presenting, but I saw this title: chrome-extension://cfnpidifppmenkapgihekkeednfoenal/alerts/malware/page_blocked.html

    cfnpidifppmenkapgihekkeednfoenal is TL's ID.

    So, if JavaScript is disabled, then I could access one of the sites, except the one that TrafficLight blocked.

    As soon as I enabled JavaScript, OpenDNS blocked access to those two validated phishing websites, that are there at the moment.

    Is OpenDNS itself, or is it DNSCrypt that requires JavaScript? Maybe it sounds stupid for DNSCrypt to need it, so probably is OpenDNS itself. :doubt: I'd have to modify quite a few settings in my system to test it out, so I didn't. I know that Norton DNS didn't need JavaScript, at all.
     
  2. syncmaster913n

    syncmaster913n Registered Member

    Joined:
    Mar 24, 2012
    Posts:
    153
    I'm using OpenDNS, and when I access one of the PhishTank websites with JavaScript DISABLED, I simply see a white page with absolutely no content. After I enable JavaScript, I see the appropriate OpenDNS warning screen.

    EDIT: sometimes even with JavaScript disabled, I immediately see the OpenDNS warning screen.
     
  3. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    I'm wondering if it makes any different the web browser we use? I'm using Chromium 20.0.1092.0 (Developer Build 130780 Windows), since yesterday.
     
  4. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    Look what happens with JavaScript disabled. As I previously mentioned, TrafficLight kicks in. I just can't see the alert, due to JavaScript being blocked. But, if I allow JavaScript, then OpenDNS blocks it first, due to being at DNS level.

    So, OpenDNS doesn't block without JavaScript. o_O :(
     

    Attached Files:

  5. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,101
    It would probably help if you disabled Java, and enabled JavaScript along with using NoScript for protection.

    Since most web pages use JavaScript, the above scheme works nicely. Disabling JavaScript does not seem to make much sense - but, you have to run the NoScipt plugin to block most kinds of JavaScript attacks.

    My $0.02 worth.

    -- Tom
     
  6. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    I appreciate your feedback, and respect that you run NoScript.

    But, why exactly would OpenDNS need JavaScript? Norton DNS doesn't need it. ClearCloud DNS didn't need it either. It's odd. :blink:

    Anyway, DNS translation does work, and that's what I want. Not interested about the phishing protection. I was just wondering how a block page would look like, and I noticed this behavior.
     
  7. syncmaster913n

    syncmaster913n Registered Member

    Joined:
    Mar 24, 2012
    Posts:
    153
    I use the latest stable Chrome release - 18.0.1025.xxxxx

    I think OpenDNS still blocks regardless of JavaScript, but it might need JavaScript to display the warning message... not sure about this though, but it seems to be my experience with the xx websites I've tried so far. Either way, none of the websites from Phishtank opened.

    If you want me to run some test for you (one that doesn't require too much installing/uninstalling) let me know, it's not a problem. I'm fine testing a different browser for that as well - just give me a download link and tell me how to disable JS.
     
    Last edited: Apr 5, 2012
  8. lotuseclat79

    lotuseclat79 Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    5,101
    Hi m00nbl00d,

    Just to clarify, I did not recommend JS as needed for DNS, but merely to keep it available for visiting most web pages as in normal use of a web browser since most web pages depend on it, and, of course, with NoScript, one has control over which scripts to allow.

    It is basically a non-issue with DNS lookups afaik.

    -- Tom
     
  9. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,855
    Not that I've done any testing myself, but to me it doesn't look like it requires JavaScript to block pages, merely to display its block page.
     
Loading...
Thread Status:
Not open for further replies.