For those of you who use OpenDNS: https://blog.opendns.com/2012/02/16/tales-from-the-dnscrypt-linux-rising/
On Fri, Feb 17, 2012 at 9:20 AM, Dan Bidleman <[email protected]> wrote: > I dont particularly want my dns resolutions 'changed for my > protection'. Its good to hear that google doesn't do that. > > On Thu, Feb 16, 2012 at 11:44 AM, inkrypto <[email protected]> wrote: >> Comodo was hacked though and are probably more secure now but after that >> diginotar bs I can't bring myself to use them . . . >> >> On Thu, Feb 16, 2012 at 11:40 AM, Michael Potts <[email protected]> wrote: >> >>> Both Comodo SecureDNS and OpenDNS will intentionally change responses to >>> protect you. If you attempt to resolve a known-bad domain, the DNS server >>> will intentionally respond with a bad bit of data (to redirect you to a >>> "You have been blocked for your protection" page) >>> >>> Google DNS (8.8.8.8 and 8.8.4.4) is a speedy mirror of the root DNS >>> servers and they have said that they do not adjust the responses in any way >>> (so they are not protecting you. Normally ideal for a server network that >>> needs to have valid responses 100% of the time. >>> >>> >>> Michael Potts >>> GV: (904) 638-2914 | Gtalk: [email protected] >>> @HMHackMaster | http://about.me/MichaelPotts >>> >>> >>> >>> On Tue, Feb 14, 2012 at 8:10 AM, Alex Stanford <[email protected]>wrote: >>> >>>> Certainly OpenDNS is one of the best options. >>>> >>>> I have been running an entire LAN through Comodo SecureDNS ( >>>> http://www.comodo.com/secure-**dns/ <http://www.comodo.com/secure-dns/>) >>>> for about a year and have never experienced any issues at all. >>>> >>>> I've also heard good things about using the DNS root servers 4.2.2.(1-6) >>>> from another JaxLUG member. But, I've read that Level3 is trying to >>>> discourage the use of the 4.2.2.x DNS servers by the general public. >>>> >>>> Cheers, >>>> Alex Stanford >>>> http://alexstanford.com >>>> http://www.linkedin.com/in/**alexstanford<http://www.linkedin.com/in/alexstanford> >>>> >>>> >>>> inkrypto wrote: >>>> >>>>> What external DNS do you use? I use comcast, my ISP's, and run a lil >>>>> webserver but don't want to get spoofed and don't know enough about bind >>>>> to >>>>> harden it so . . . >>>>> >>>>> OpenDNS? >>>>> >>>>> >>>> ------------------------------**------------------------------**--------- >>>> Archive >>>> http://marc.info/?l=jaxlug-**list&r=1&w=2<http://marc.info/?l=jaxlug-list&r=1&w=2> >>>> RSS Feed >>>> http://www.mail-archive.com/**[email protected]/maillist.xml<http://www.mail-archive.com/[email protected]/maillist.xml> >>>> Unsubscribe [email protected] >>>> >>>> >>> > > --------------------------------------------------------------------- > Archive http://marc.info/?l=jaxlug-list&r=1&w=2 > RSS Feed http://www.mail-archive.com/[email protected]/maillist.xml > Unsubscribe [email protected] > -- If you have freedom to choose, choose freedom, use GNU/Linux --------------------------------------------------------------------- Archive http://marc.info/?l=jaxlug-list&r=1&w=2 RSS Feed http://www.mail-archive.com/[email protected]/maillist.xml Unsubscribe [email protected]
