Use dnscrypt, protect your freedom

  • 🐕 I am attempting to get the site runnning as fast as possible. If you are experiencing slow page load times, please report it.
CrunkLord420

CrunkLord420

not a financial adviser
Forum Staff
True & Honest Fan
kiwifarms.net
Joined
Jul 22, 2017
Imagine using your ISPs domain name resolver, allowing your ISP to associate your personal identity with the sites you visit, and censor them on demand.

Imagine using Cloudflare or Google's resolver, centralizing all requests to a single mega-honey pot while still being vulnerable to man-in-the-middle, packet sniffing and DNS poisoning techniques.

This is your reminder to use DNScrypt: https://dnscrypt.info/

698124
 
Last edited:
  • Winner
  • Semper Fidelis
  • Informative
Reactions: NoReturn, NOT Sword Fighter Super, Discourteous Discourse and 7 others
CrunkLord420 said:
Imagine using your ISPs domain name resolver, allowing your ISP to associate your personal identity with the sites you visit, and censor them on demand.

Imagine using Cloudflare or Google's resolver, centralizing all requests to a single mega-honey pot while still being vulnerable to man-in-the-middle, packet sniffing and DNS poisoning techniques.

This is your reminder to use DNScrypt: https://dnscrypt.info/
Click to expand...

What % is your commission, my guy?
 
  • Thunk-Provoking
Reactions: CrunkLord420
CrunkLord420 said:
dnscrypt-proxy supports both Linux and Android, including ARM builds. I don't really know anything about ChromeOS as it is a device for subhumans: https://github.com/jedisct1/dnscrypt-proxy/releases
Click to expand...

DNSCrypt is a dead tech, dude. It isn't actively developed. The team is just patching holes when they are noticed. You're much better off just shelling out the $2/mo for a decent VPN with DNS leak protection like Nord or PIA. PIA even has their own DNS settings. Not to mention your traffic is encrypted even if your retarded ass manages to fuck up your DNS settings.
 
  • Agree
  • Like
Reactions: Draza and The_Mormons
Crippled Eagle said:
When DNSCrypt folded and was picked up by the DNSCrypt-Proxy team, they explicitly stated that they were only going to maintain the program and patch holes. Did something change?
Click to expand...
DNSCrypt is a protocol. dnscrypt-proxy is an implementation of the protocol. The protocol is basically done, and does not need to be changed unless there is an issue or the protocol is expanded upon in some way. This is normal. There are many client and server implementations of the dnscrypt protocol, dnscrypt-proxy is the most popular client implementation.

Official DNSCrypt organization regularly updating their repos.
698144


Popular server implementation updated 2 days ago:
698145
 
  • Informative
Reactions: AlexJonesGotMePregnant
Since DNS blocking is in the news again, I think this thread should be bumped.

dnscrypt-proxy added Anonymized DNS and Oblivious DNS over HTTPS, which send DNS messages over a relay network, which anonymizes DNS requests. You can also configure it to send all requests over Tor.

When you install dnscrypt-proxy, you should reboot to check that it is working. Unix systems have a habit of overwriting your resolv.conf file, which means that your activity will not be going through dnscrypt-proxy. If you use Linux, consider using chattr +i /etc/resolv.conf to force programs to not overwrite the file.

If you run dnscrypt-proxy on a portable computer (phone, laptop, etc.) you will need to turn dnscrypt-proxy off to access captive portals (airport/hotel/coffee shop wifi). If you added the immutable flag to your resolv.conf file, you will also have to do chattr -i /etc/resolv.conf before you connect to the open network. Once you accept the terms on the captive portal, you can re-enable dnscrypt-proxy.
 
  • Informative
Reactions: NoReturn
I'm a tech moron, but set up a pihole (ad, tracking, bullshit telemetry DNS black hole) and go with a unbound setup. Instead of relying on any DNS service which could be cucked, you go straight to the authoritative name servers. At the point that authoritative name servers are blocking KF, then the internet is so fucked that we will probably be in gulags anyway at that point.



 
You must log in or register to reply here.
Back