The problem is that DNS is currently basically broken. DNS requests go unencrypted, in the clear and there is no kind of proof that the answer has not been read or tampered with.
This (app) solves one part of that problem and not well really. The connection between you and one or two DNS servers are encrypted. The dns requests you make cannot be examined or changed by your ISP or other ISPs in the chain. It doesn't solve the problem of proving the DNS record is accurate. > On 2018/Nov/13, at 3:09 pm, Christian Heinrich > <[email protected]> wrote: > > Kim, > > On Tue, 13 Nov 2018 at 10:16, Kim Holburn <[email protected]> wrote: >>> A cool feature of Cloudflare’s DNS service, at the IP address 1.1.1.1, is >>> that it supports encryption. So an ISP, government, or hacker also can’t >>> read the requests you send to Cloudflare’s server by trying to intercept >>> the traffic. > > Paul Vixie recommended https://www.quad9.net/ > > There is also https://www.opendns.com/ > > > -- > Regards, > Christian Heinrich > > http://cmlh.id.au/contact -- Kim Holburn IT Network & Security Consultant T: +61 2 61402408 M: +61 404072753 mailto:[email protected] aim://kimholburn skype://kholburn - PGP Public Key on request _______________________________________________ Link mailing list [email protected] http://mailman.anu.edu.au/mailman/listinfo/link
