this post was submitted on 30 Jun 2023
2 points (100.0% liked)

Privacy

32120 readers
280 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I read a bit about using a different DNS for Privacy and I think the best one should be quad9? Or is there anything better except self hosting a DNS?

all 29 comments
sorted by: hot top controversial new old
[–] dr_doorknob@lemmy.ml 3 points 1 year ago (1 children)

I use Quad9 for my upstream.

[–] FarLine99@lemm.ee 2 points 1 year ago
[–] seaotter113@lemmy.world 2 points 1 year ago

Want something that works fast? NextDNS, Adguard or DNSwatch

Want something a bit more complicated but better for privacy? Setup PiHole + DNSCrypt proxy with anonymized DNS

[–] ajimix@lemmy.ml 2 points 1 year ago

Using NextDNS for quite long time

[–] freecloudgal@discuss.tchncs.de 2 points 1 year ago* (last edited 1 year ago)

I use NextDNS, but also use Cloudflare sometimes.

[–] XpeeN@sopuli.xyz 1 points 1 year ago

I'm using dnscrypt combined with a firewall app. RethinkDNS on android and postmaster on pc.

[–] brainlessnick@feddit.de 1 points 1 year ago

Quad9 is decent, but there's some weird legislative issues (they can be court ordered to not resolve certain sites) BC weird reasons.

If you have a raspberry pi or similar sitting somewhere, you can set up a pihole DNS with unbound as upstream. Then you've got a DNS that's as private as you want, locally cached and with additional ad/malware/... blocking capabilities.

[–] Surreal2625@lemmy.ml 0 points 1 year ago

I use cloudflare dns

[–] nachtigall@feddit.de -1 points 1 year ago (3 children)

The one from your ISP. Your ISP can see your traffic anyway, so you gain nothing by using a third-party DNS server.

[–] fatcat@discuss.tchncs.de 0 points 1 year ago (1 children)

As far as I read (I'm no expert!) they could check the SNI of the TLS handshake if they want. But using the DNS of the ISP is handing them the data right in a way they can analyze/use them very easily afaik?

Still learning about this topic!

[–] nachtigall@feddit.de 0 points 1 year ago (1 children)

They route your traffic, hence they can see all IP addresses you communicate with. With a reverse lookup you can then usually find out the address too.

[–] skullgiver@popplesburger.hilciferous.nl 1 points 1 year ago* (last edited 1 year ago)

[This comment has been deleted by an automated system]

[–] itchy_lizard@feddit.it 0 points 1 year ago (1 children)

Mt ISP can't see my traffic or my DNS lookups lol

[–] nachtigall@feddit.de 0 points 1 year ago (1 children)

Congrats but then you are using more than just another DNS resolver/different DNS technology.

[–] itchy_lizard@feddit.it -1 points 1 year ago

Yes, if you want privacy then you need a good VPN provider