NetBSD-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Securing DNS traffic



On Sat, 23 May 2020 11:38:18 +0200 (CEST)
Havard Eidnes <he%NetBSD.org@localhost> wrote:

> If you desire to protect your lookup history from prying eyes, it's
> one thing to protect the communication itself.  However, I would
> personally shy away from all of Google, Cloudflare and Mozilla
> recursors, DoH or not.

I'm also worried about this, but also fear datamining by my ISP. So I
completely ditched Google, and split my queries between Cloudflare and
Quad9 - neither gets the complete picture.


As running a recursive resolver isn't rocket science, I've considered
setting up my own on some cheap VM's from whomever, with DNS over TLS
between my home network and personal resolvers. This way only the
authoritative services know.

If there was a way to share hosting costs with a small to medium number
of other users, it would be worth it. But for just myself I concluded
it wasn't.

-- 
Aaron B. <aaron%zadzmo.org@localhost>


Home | Main Index | Thread Index | Old Index