Cloudflare DNS DNSSEC 1.1.1.1 [hide your DNS]
Anyone else take this DNS nameserver for a spin?
DNS1= 1.1.1.1 DNS2= 1.0.0.1 https://1.1.1.1/
I set it for the DNS in my router and configured my VPN servers to push it through the DHCP request and from the little testiing I've done so far no IP addresses for DNS show up on regular leak test sites.. (except for dnsleaktest.com)
If you read what its suppose to do it does a bunch of stuff... I did a search for Cloudflare here and only pulled results regarding their other services for cache websites when they go off line. I remember when they launched this thing a month or two ago but I got the impression it was only suppose to translate your DNS results nano seconds faster.... Didnt know all the other stuff it does.
DNS over HTTPS
Even if you are visiting a site using HTTPS, your DNS query is sent over an unencrypted connection. That means that even if you are browsing https://cloudflare.com, anyone listening to packets on the network knows you are attempting to visit cloudflare.com.
The second problem with unencrypted DNS is that it is easy for a Man-In-The-Middle to change DNS answers to route unsuspecting visitors to their phishing, malware or surveillance site. DNSSEC solves this problem as well by providing a mechanism to check the validity of a DNS answer, but only a single-digit percentage of domains use DNSSEC.
To combat this problem, Cloudflare offers DNS resolution over an HTTPS endpoint. If you build a mobile application, browser, operating system, IoT device or router, you can choose for your users to use the DNS over HTTPS endpoint instead of sending DNS queries over plaintext for increased security and privacy of your users.
What do you think?
Last edited by nate; 06-13-2018 at 11:09 AM.
|