Go to main content

Textpattern CMS support forum

You are not logged in. Register | Login | Help

#1 2019-02-04 13:12:28

Destry
Member
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,909
Website

Securing DNS

Anyone fiddled with DNSSEC or DNS-over-TLS

I wouldn’t know where to begin.

I’m not familiar with these terms, but it seems if you’re going to be concerned about HTTPS and using VPN, you probably want to do this too.

Offline

#2 2019-02-04 13:53:54

Bloke
Developer
From: Leeds, UK
Registered: 2006-01-29
Posts: 11,447
Website GitHub

Re: Securing DNS

Above my pay grade, but luckily I’ve not had to bother with securing my DNS, as my VPN provider seems to do it automatically. At least, it passes the DNS Leak test when I’m connected through the VPN.


The smd plugin menagerie — for when you need one more gribble of power from Textpattern. Bleeding-edge code available on GitHub.

Txp Builders – finely-crafted code, design and Txp

Offline

#3 2019-02-04 15:07:17

Destry
Member
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,909
Website

Re: Securing DNS

Ah, leak test. I forgot I need to check that.

Offline

#4 2019-02-08 23:35:53

Destry
Member
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,909
Website

Re: Securing DNS

I was using ProtonVPN these last days, though didn’t understand all the features, then was reading a brief and came across this info on it:

No Logs Policy
Under Swiss law, we are not obligated to save any user connection logs, nor can we be forced to perform targeted logging on specific users. This allows us to ensure that your private browsing history does, in fact, stay private and cannot be turned over to a third-party under any circumstances.

Liking that. Kind of makes me wish I went with that Swiss web host, I forgot their name. Maybe next year.

DNS Leak Prevention
ProtonVPN doesn’t just protect your browsing traffic, we also protect your DNS queries. By routing your DNS queries through the encrypted tunnel and not relying on third-party DNS providers, we ensure that your browsing activity cannot be exposed by leaks from DNS queries.

So is that addressing my original enquiry in this thread? Maybe.

My trial is over already, though. Must now decide whether or not to buy/support ProtonVPN.

And this is perhaps noteworthy, ProtonVPN is working with Mozilla to integrate their VPN protection in Firefox. Though Moz is under flack lately about Google affiliations too.

Oh, what a complicated spider web it is.

Offline

#5 2020-07-20 19:55:07

Destry
Member
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,909
Website

Re: Securing DNS

Seven ‘no log’ VPN providers were hacked, exposing 1.2 TB worth of user logs.

Data includes plaintext passwords, IP addresses, timestamps of user connections, session tokens, information of the device, and OS being used along with geographical information in the form of tags.

The VPN providers affected are UFO VPN, FAST VPN, Free VPN, Super VPN, Flash VPN, Secure VPN, and Rabbit VPN.

I haven’t paid to continue using ProtonVPN, but I guess I’m glad it’s not in that list.

Last edited by Destry (2020-07-20 19:55:46)

Offline

#6 2020-07-21 05:37:05

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,090
Website GitHub Mastodon Twitter

Re: Securing DNS

The good thing is that none of those VPNs are respected by the community.


Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

#7 2020-07-21 07:46:09

Destry
Member
From: Haut-Rhin
Registered: 2004-08-04
Posts: 4,909
Website

Re: Securing DNS

Neither is FB, for example, but people still can’t help themselves.

So, pointing these events out, as I’ve done here, is rather… pointless, I guess.

People will be sheeple, and we will returno to the inferno.

Offline

#8 2020-07-21 07:53:28

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,090
Website GitHub Mastodon Twitter

Re: Securing DNS

Destry wrote #324726:

Neither is FB, for example, but people still can’t help themselves.

So, pointing these events out, as I’ve done here, is rather… pointless, I guess.

People will be sheeple, and we will returno to the inferno.

I do not think that it is pointless! The mainstream media neither inform nor warn about privacy issues. We may be a small community but if each one of us uses their outreach, we may slowly instigate some change.

Re FB, T, G, etc… Sometimes they are a necessary evil. None of us like them but sometimes they are the only way we can reach a wider audience.

Last edited by colak (2020-07-21 07:56:50)


Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

#9 2020-07-21 08:05:27

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,090
Website GitHub Mastodon Twitter

Re: Securing DNS

ps… Earlier this year, this list of trusted no-logs VPN services was sent to me by a friend who is into security and privacy. Should anyone wants/needs these type of services should of course conduct their own research

  • 12VPN
  • AirVPN
  • ConfirmedVPN
  • CryptoStorm
  • Disconnect VPN
  • DotVPN
  • Mullvad
  • ProtonVPN
  • Psiphon
  • Thunder VPN
  • VIP72 VPN
  • VPN.ac
  • Zorro VPN
  • Celo VPN
  • Hideman VPN
  • IVPN
  • Seed4.Me
  • VPNReactor
  • Windscribe
  • ZenVPN

Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

#10 2020-07-21 11:57:04

gaekwad
Server grease monkey
From: People's Republic of Cornwall
Registered: 2005-11-19
Posts: 4,259
GitHub

Re: Securing DNS

Destry wrote #324726:

So, pointing these events out, as I’ve done here, is rather… pointless, I guess.

Absolutely not pointless, in my humble. Stick to your principles.

Offline

Board footer

Powered by FluxBB