Hi Bernhard, nice to see you're still around. :-) I hadn't seen you active for a long time, probably I just don't know your nick on the forum.
And I ignore if TOR does use "cross checking requests" to detect manipulation? The question of " best practice " seems non-trivial to me. Setting up a DNS qube seems a good idea as such, but what kind of software can trustworthily be run on such a qube??
Personally I use unbound as recursive DNS resolver, but I guess everyone may have different trust choices. Anyway that's not specific to Qubes OS. I also use systemd-resolved in firewall VMs for caching [1]. [1] https://github.com/3hhh/qubes-dns Best Regards David -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/7723207e-1df1-3542-512c-3cba1c61eeb3%40hackingthe.net.
OpenPGP_0x08DEA51AE90C3780.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
