redpill me on pic related Jow Forums
Redpill me on pic related Jow Forums
>redpill
No
run unbound.
This
DNS servers are all anti-privacy in their current state, so it's a matter of choosing who you want to trust.
Whether you choose cloudflare or google or quad9, if you're using regular unencrypted DNS queries, your ISP can read every request you make. Behind Google, your ISP is probably the least trustworthy entity in the group of those that can read your queries, so they're the ones you want to cut out.
You do this by using a DNS service that supports some kind of encrypted DNS queries, like DNS-over-TLS.
Cloudflare is one of the few good DNS services that supports DNS-over-TLS so your ISP doesn't have to see everything you do, and they have a much better privacy policy than Google (and are routinely audited to make sure they follow it)
You're still giving a private corporation access to a lot of important browsing data, but usually cloudflare's going to be the lesser of all evils.
Even running your own recursive resolver is probably worse, because most authoritative nameservers don't support any kind of encryption, so not only will tons of different servers be able to see your requests, but your ISP will be able to see all of them too.
Cloudflare dns is still blocking archive.is
ISPs are honestly less spying than you think. ISPs are usually hands off and don't really give a fuck and they don't hoard data since they can't sell it to advertisers
You should be more paranoid about google and clousflare than your isp
no.
maintainer of archive.is intentionally configured their resolver to tell 1.1.1.1 to fuck off
community.cloudflare.com
cloudflare has reached out multiple times
the archive.is guy is either incompetent or intentionally blocking CF
He says the same about them, That cloudflare dns is configured to drop archive.is
>Cloudflare
>Privacy
LOL
Cloudflare is run by the NSA. Don't trust anything they do. The perfect MitM op. DDoS everyone until they come running to you. No more pesky encryption.
an actual literal corporate shill and no one calls him out on it.....
He's lying and you can check yourself. Run a cloudflare worker that queries archive.is's nameserver form a cloudflare server. It will connect, you'll get a response from the nameserver, and the response will be garbage
who could be behind these post?
Thoughts on opennic? What is the safest DNS currently?
Who is behind 8.8.8.8 and 8.8.4.4?
I set those DNS values long ago.
Hmm. I wonder who is tracking every website that I happen to visit.
Common Sense, privacytools.io
I looked further into the issue. It seems that the archive.is guy intentionally broke 1.1.1.1 because of some autism that I don't have the background to understand.
Pic related.
Realistically, given any corporation that has access to my searches knows every embarrassing bit of porn of i’ve looked at or downloaded, what will they do with this information?
Give you deals for programming socks and deldo-mode compatible teledildonics
its a normie spy-trap
If you think that company that big wont spy on your queries, you're just about naive enough to use it
I may be wrong, but is it even possible to hide which websites you're viewing without something like TOR? Even if you encrypt the DNS queries the routers still need to know where to send your packets, right?
Read a firejail howto a while ago.
It recommended using google dns servers for online banking because they're actively monitored by the NSA.
Shut the fuck up you lying faggot, federal IT themselves severely district ISP's and warn of their snooping.
For real, what in the fuck. Filthy virtual commies
>Who is behind 8.8.8.8 and 8.8.4.4?
>I set those DNS values long ago.
>Hmm. I wonder who is tracking every website that I happen to visit.
google. the most evil of them all. you done goofed.
Hmm. Is it so bad that Google knows where I go?
I mean, it's not like they know what I do once I get there.
It probably helps the sites that I surf get more Google juice in the search results.
>Hmm. Is it so bad that Google knows where I go?
Yes.
>I mean, it's not like they know what I do once I get there.
Doesn't matter. ML algos profile you and they can determine, with high degree of accuracy, your psychological/racial/etc profile and can predict all kinds of things about you.
>It probably helps the sites that I surf get more Google juice in the search results.
No it doesn't. Look at the SEO signals. It's not there. This data is used purely for people tracking.
do not use this or 8.8.8.8
there's one in europe that was actually quite fast just can't remember it, i use a private service
Doesn't work with archive.is, etc. Pic related is my preferred.
>9.9.9.9
>149.112.112.112
It could be fun to set the New Zealand DNS server as your one and only, then reboot your computer.
Just imagine those round trip times on every website you attempt to load, including javascript libraries and ads. It might make a dial-up modem feel fast.
it only does initial dns once then it's cached forever lol, what are you talking about
It's definitely not cached forever.
I wasn't sure if the DNS cache survives a reboot.
I'm not sure it does.
>either get a forced blocklist and DNSSEC, or no blocklist and no DNSSEC
What if I want DNS responses validated with DNSSEC but don't want these random fuckers arbitrarily decided what domains I'm allowed to resolve?
Just install unbound on your router.
ISPs are the ones who gives less shits about what you do.
This is especially true for 3rd world countries.
Unless you live in NA where they just sniff your torrents and send you scare copyright letters, but they're too incompetent for anything beyond that, unlike google and other DNS alternatives.
At the end of the day, you have to trust someone because you don't own the internet so the best thing you can do is not stand out too much from the crowd.
You still need to point to an upstream DNS server...
Android 9 pie is so easy to add:
Find private DNS in setting.
Set to:
1dot1dot1dot1.cloudflare-dns.com
No
kys
show your unbound config
What DNS do I use if I'm afraid of state (not federal) law?
>Is it so bad that Google knows where I go?
Google doesn't know where "you" go, it "knows" which addresses an ip requests
also, they don't actually "know" it because it's a fucking dns server, it doesn't log every stupid request it receives. why the fuck would it do that even if it wasn't illegal
It's the default pfsense creates.
>unbound-control -c /var/unbound/unbound.conf forward
>off (using root hints)
>redpill me
it's really fast, for some (here) it's a lot faster than Google's dns.
it's botnet. it's free, you're the product.
>ISPs are honestly less spying than you think
Some ISPs in some countries won't spy at all and don't care, some will not only look at your traffic but also screw with it. Making a general statement is therefore difficult and you should assume the worst.
I disagree with this approach, not liking couldflare is fine, screwing with DNS responses to them isn't.
Master race
Advertising is against the rules.
> not logging every single request
Keep on dreaming sweetie
if you lose a cool digital picture you took you can ask the nsa for a copy.
botnet
Please stop calling each others names and recommend the best DNS service.
Does a VPN help privacy in this matter?
how is dns watch in germany?
Any OpenNIC server with DNScrypt. It'll be slower than cloudfare or (((google))) though
lol what a retard
What are you running there?
Are you using keyboard in it? Bluetooth or OTG?
DNS is a plot by (((them))) to make your minds weak and to track you. It's why you can barely remember phone numbers and have problems with basic arithmetic if someone takes your IPhone away.
You do remember every IP address of every website, right?
dumb pol poster
>dns is a jew conspiracy
>he doesn't use OpenNIC
The app itself is a battery hog.
>implying you visit more than 3 websites
>implying you don't have them bookmarked anyway
>The app
zoom zoom
freeform windows enabled and otg keyboard/mouse + Chromecast on the poco, on my lg v30 that's hdmi out
here, didn't feel like typing "application" and I'm going on 31.
Faggot.
>your ISP is probably the least trustworthy entity in the group of those
ISP already knows what servers you communicate with you dimwit
>angry about a company not running a draft RFC in production
Subscribe to my newsletter and PewDiePie.
> Subscribe to PewDiePie
Why not just use your own regularly-updated hosts file?