ModerateImprovement

I created a light DNS page for me.

https://sh.itjust.works/post/22184636

I created a light DNS page for me. - sh.itjust.works

It’s kind of common for me to change DNS servers frequently, so I created a light page which list all the DNS servers that I know of that does not log DNS requests. **Link:**https://secu.pages.dev/ [https://secu.pages.dev/] I wanted to post it here for people who are like me and needed a project like this.

Jul 13, 2024 at 10:21amWeb
Show threadijhooJul 13, 2024
What about quad9? Do they log queries?
Show threadrnercleJul 13, 2024
“anonymized” according to www.privacyguides.org/en/dns/
DNS Resolvers - Privacy Guides

We recommend choosing these encrypted DNS providers to replace your ISP's default configuration.

Privacy Guides
Show threadijhooJul 13, 2024
Interesting, thanks
Show threadSorteKaninJul 13, 2024
Now that’s a website
Show threadedricJul 13, 2024
What about the IPv4 versions? I use Mullvad and ControlD on my router that only accepts IPv4 for DNS configuration.
Show threadBombasticJul 13, 2024
Bookmarked. Thanks
Show threadsmplJul 13, 2024

There’s plenty to add from OpenNIC and you get access to some addition TLDs as a bonus ;)

servers.opennicproject.org

Show threadModerateImprovementJul 13, 2024

Actually supporting more TLDs is a security risk, so I cannot add them.

I will not add it for now, but I might think about it later.

Thank you for your suggestion.

Show threadsmplJul 13, 2024
How?
Show threadModerateImprovementJul 13, 2024
Malware distributors buy very cheap domains with uncommon TLDs and then use it.
Show threadsmplJul 13, 2024
I don’t understand how that would be a security risk to you. Even if I understood what the threat vector was, it would be very inefficient to use an OpenNIC tld to spread malware as you only target 0.0001% (random very low number) of internet users.
Show threadModerateImprovementJul 13, 2024

Here is a article talking about malware operators forcing opennic to drop one of their TLDs back in 2019:

zdnet.com/…/opennic-drops-support-for-bit-domain-…

Here is a article from sophos talking about malware using OpenNIC in 2021:

news.sophos.com/en-us/2021/04/15/bazarloader/

Here is a article that talk about recent(2023) attack that use OpenNIC:

thehackernews.com/…/researchers-warn-of-catddos-b…

As you can see, malware can target me and you based on opennic.

OpenNIC drops support for .bit domain names after rampant malware abuse

OpenNIC maintainers also worried about cyber-criminals hosting child pornography on .bit domains.

ZDNET
Show threadsmplJul 13, 2024
From what I read these articles talk about post infection use of OpenNIC tlds. Anyway it was just a suggestion, it’s always a good idea to only use DNS servers you trust :)
Show threadModerateImprovementJul 14, 2024
:)
Show threadepochJul 14, 2024
Wow, thank you! I didn’t know many of those!
Show threadQuerellerJul 14, 2024
Controversial question probably but what is with one.one.one.one (Cloudflare).
Show threadModerateImprovementJul 14, 2024

They log queries:

developers.cloudflare.com/…/public-dns-resolver

1.1.1.1 Public DNS Resolver · Cloudflare 1.1.1.1 docs

Learn more about Cloudflare's commitment to privacy with the 1.1.1.1 Public DNS Resolver.

Cloudflare Docs
Show threadludJul 14, 2024
Those terms seem very reasonable.
Show threadColonel PanicJul 14, 2024

We should make a server that has a database of all these numbers and let’s you do lookup queries in real time. And we could make that process part of the protocol stack that every device uses.

I think you just invented DNS DNS, or Meta-DNS, MDNS? 🤣

Show threadTCB13Jul 14, 2024
For a website hosted at Cloudflare I was expecting to see it there 😂