Both Comodo SecureDNS and OpenDNS will intentionally change responses to protect you. If you attempt to resolve a known-bad domain, the DNS server will intentionally respond with a bad bit of data (to redirect you to a "You have been blocked for your protection" page)
Google DNS (8.8.8.8 and 8.8.4.4) is a speedy mirror of the root DNS servers and they have said that they do not adjust the responses in any way (so they are not protecting you. Normally ideal for a server network that needs to have valid responses 100% of the time. Michael Potts GV: (904) 638-2914 | Gtalk: [email protected] @HMHackMaster | http://about.me/MichaelPotts On Tue, Feb 14, 2012 at 8:10 AM, Alex Stanford <[email protected]> wrote: > Certainly OpenDNS is one of the best options. > > I have been running an entire LAN through Comodo SecureDNS ( > http://www.comodo.com/secure-**dns/ <http://www.comodo.com/secure-dns/> ) > for about a year and have never experienced any issues at all. > > I've also heard good things about using the DNS root servers 4.2.2.(1-6) > from another JaxLUG member. But, I've read that Level3 is trying to > discourage the use of the 4.2.2.x DNS servers by the general public. > > Cheers, > Alex Stanford > http://alexstanford.com > http://www.linkedin.com/in/**alexstanford<http://www.linkedin.com/in/alexstanford> > > > inkrypto wrote: > >> What external DNS do you use? I use comcast, my ISP's, and run a lil >> webserver but don't want to get spoofed and don't know enough about bind >> to >> harden it so . . . >> >> OpenDNS? >> >> > ------------------------------**------------------------------**--------- > Archive > http://marc.info/?l=jaxlug-**list&r=1&w=2<http://marc.info/?l=jaxlug-list&r=1&w=2> > RSS Feed > http://www.mail-archive.com/**[email protected]/maillist.xml<http://www.mail-archive.com/[email protected]/maillist.xml> > Unsubscribe [email protected] > >
