I created a light DNS page for me.
from ModerateImprovement@sh.itjust.works to privacy@lemmy.ml on 13 Jul 2024 12:21
https://sh.itjust.works/post/22184636

It’s kind of common for me to change DNS servers frequently, so I created a light page which list all the DNS servers that I know of that does not log DNS requests.

Link: secu.pages.dev

I wanted to post it here for people who are like me and needed a project like this.

#privacy

threaded - newest

ijhoo@lemmy.ml on 13 Jul 2024 12:35 next collapse

What about quad9? Do they log queries?

merde@sh.itjust.works on 13 Jul 2024 12:47 collapse

“anonymized” according to www.privacyguides.org/en/dns/

ijhoo@lemmy.ml on 13 Jul 2024 13:15 collapse

Interesting, thanks

SorteKanin@feddit.dk on 13 Jul 2024 12:56 next collapse

Now that’s a website

communism@lemmy.ml on 13 Jul 2024 19:29 collapse

A motherfucking website

some_guy@lemmy.sdf.org on 13 Jul 2024 20:17 collapse

For the uninitiated: motherfuckingwebsite.com

scytale@lemm.ee on 13 Jul 2024 15:15 next collapse

What about the IPv4 versions? I use Mullvad and ControlD on my router that only accepts IPv4 for DNS configuration.

Bombastic@sopuli.xyz on 13 Jul 2024 18:47 next collapse

Bookmarked. Thanks

smpl@discuss.tchncs.de on 13 Jul 2024 21:26 next collapse

There’s plenty to add from OpenNIC and you get access to some addition TLDs as a bonus ;)

servers.opennicproject.org

ModerateImprovement@sh.itjust.works on 13 Jul 2024 21:44 collapse

Actually supporting more TLDs is a security risk, so I cannot add them.

I will not add it for now, but I might think about it later.

Thank you for your suggestion.

smpl@discuss.tchncs.de on 13 Jul 2024 22:37 collapse

How?

ModerateImprovement@sh.itjust.works on 13 Jul 2024 23:04 collapse

Malware distributors buy very cheap domains with uncommon TLDs and then use it.

smpl@discuss.tchncs.de on 14 Jul 2024 00:10 collapse

I don’t understand how that would be a security risk to you. Even if I understood what the threat vector was, it would be very inefficient to use an OpenNIC tld to spread malware as you only target 0.0001% (random very low number) of internet users.

ModerateImprovement@sh.itjust.works on 14 Jul 2024 00:54 collapse

Here is a article talking about malware operators forcing OpenNIC to drop one of their TLDs back in 2019:

zdnet.com/…/opennic-drops-support-for-bit-domain-…

Here is a article from sophos talking about malware using OpenNIC in 2021:

news.sophos.com/en-us/2021/04/15/bazarloader/

Here is a article that talk about recent(2023) attack that use OpenNIC:

thehackernews.com/…/researchers-warn-of-catddos-b…

As you can see, malware can target me and you based on OpenNIC.

smpl@discuss.tchncs.de on 14 Jul 2024 01:49 collapse

From what I read these articles talk about post infection use of OpenNIC tlds. Anyway it was just a suggestion, it’s always a good idea to only use DNS servers you trust :)

ModerateImprovement@sh.itjust.works on 14 Jul 2024 07:03 collapse

:)

epoch@lemmy.world on 14 Jul 2024 07:48 next collapse

Wow, thank you! I didn’t know many of those!

Quereller@lemmy.one on 14 Jul 2024 09:23 next collapse

Controversial question probably but what is with one.one.one.one (Cloudflare).

ModerateImprovement@sh.itjust.works on 14 Jul 2024 14:38 collapse

They log queries:

developers.cloudflare.com/…/public-dns-resolver

lud@lemm.ee on 14 Jul 2024 16:48 collapse

Those terms seem very reasonable.

Colonel_Panic_@lemm.ee on 14 Jul 2024 14:26 next collapse

We should make a server that has a database of all these numbers and let’s you do lookup queries in real time. And we could make that process part of the protocol stack that every device uses.

I think you just invented DNS DNS, or Meta-DNS, MDNS? 🤣

TCB13@lemmy.world on 14 Jul 2024 20:19 collapse

For a website hosted at Cloudflare I was expecting to see it there 😂