Discussion in 'privacy technology' started by Frankfree, May 12, 2019.
What DNS service are you using ?
System: Quad9 secure.
Firefox: DoH - https://mozilla.cloudflare-dns.com/dns-query, mode 3, 18.104.22.168 bootstrapped.
Cloudflare (22.214.171.124) with Simple DNSCrypt.
Quad9, because it combines filtering of harmful domains and DNSSEC. If OpenDNS would include DNSSEC I would use OpenDNS.
Why do you need an app? it is simply changing two lines of code in your iphone or pc
System: Quad9 Secure
Browser: CleanBrowsing Security
Firefox has built-in DoH client.
I had been using https://www.dnsfilter.com/ on my router to protect my home network but they went from $5 per month to $20 which was to much, to bad to it had a nice dashboard gave you all the statistics, what was connecting and how many times, custom blocking polices, white listing etc...
For now Cloudflare 126.96.36.199 it is about the fastest I get on the GRC benchmark https://www.grc.com/dns/benchmark.htm
I wish I could use Simple DNSCrypt, but this darn issue is ruining everything for me.
It's been a year since it was reported, and the owner doesn't give a duck.
Lines of code?? If by "two lines" you refer to two DNS IP address fields in a settings dialogue, ever since the advent to DoH and DoT, now subjects in any discussion about DNS, things are a bit more involved than two of anything in the avoidance of port 53, UDP, etc. Search up on it, it's fascinating and 30 years overdue.
Anyhow, I was referring to my real computers: Windows desktop and laptop.
If by "iphone" you mean mobile, for my google controlled Pie Moto X4 and Oreo Samsung Galaxy Tab A 10.6 stupid devices, I use AdGuard's DoH in their Android app, both licensed. That controls DNS, among other awsome features, for ALL apps on the devices. (Yes, I know about google Pie's "Private" DNS setting but choose not to use that for reasons beyond the scope of this thread.)
If you mean an Apple iPhone, I can't afford the extra hundreds of $$ they want for their logo. Besides, Apple don't need no stinkin' DNS.
I see, I guess I am lucky, it works like a charm here.
They seem like good people. And not so anti-Tor as some make them out to be.
My ISP's DNS are the quickest for me and they block known phishing and malicious websites. Why not? Privacy? By law Australian ISPs have to store our metadata for two years now anyway.
We have a similar situation here in Sweden, which is why I've blocked all internet access on my computer if I'm not connected to my VPN
Phone is a different story though.
Mainly my VPN Provider's DNS
Else: SecureDNS.eu (provides Dns over Https to).
CloudFlare provides "Dns over Tor" too:
DNS provided by my ISP and DNS from VPN service when connected.
System via AcrylicDNS: Cloudflare > Quad9
Router: Cloudflare > Quad9
Browser: Cloudflare DoH
I was using dnscrypt-proxy with Acrylic at one point but didn`t bother replacing it after a reinstall, not sure if it was worth it.
Have you tried dnscrypt2?
I use several for different purposes including my own DNS black hole server set up on a VPS. The one I don't use is the one from my ISP. Not that there is anything wrong with it but there are better options. I tend to use a VPN provider's DNS with a VPN but I sometimes make exceptions.
Please provide more information , What is DNS black hole and how can it be useful ? I have solusvm on a dedicated server so I can create openvz VPS
Just started using the free public pi-hole. Wanna see if it blocks more ads than Adguard DNS.
That is pretty cool. If it were faster for me, I would likely use it.
I need to get around and look into setting up my own one of these days.
I use pi-hole for ad filtering on mobile devices and have found it very reliable. The latest versions are very easy to install and configure too.
For privacy and security reasons I'd personally avoid directing all my DNS queries to a public pi-hole but each to their own.
Separate names with a comma.