OpenDNS privacy policy updated: no logs option!

Tiamati

Level 12
Thread author
Verified
Top Poster
Well-known
Nov 8, 2016
574
Now you can create an OpenDNS account and opt to don't store any logs. So OpenDNS won't have any stored information about habits. On the other hand, you can choose to save logs indefinitely (for you and open DNS) and have access to all your information. You can purge that info any time you want, as you can delete your account and all associated info.

It seems a great privacy improvement. I tried and it seems to work.

It’s important to let you know that we don’t share your personal data. We don’t sell it. We don’t trade it. We don’t do anything with it that isn’t in your best interests.
How do we know what’s in your best interests? We don’t…so we give you control over any DNS data we collect. You can tell us to keep it (for the detailed insights and charts) or you can tell us to purge it. You can even tell us not to store it at all. We know that for most of you, keeping logs about your DNS traffic (which, again, we won’t ever sell) provides you a greater experience and quality of service. In fact, like everything else we do, this feature was driven by your feature requests and desires to see more about what’s going on with your network.

Among other changes, we’re providing more clarity about how long your DNS data is stored. Without an account, data is kept for 2 business days. (An account is optional.) With a free OpenDNS account, your data is kept indefinitely, unless you choose to delete data and have us stop recording your data. You can set your stats collection preference in the new Dashboard. If you delete your account, your DNS data is removed.

Unfortunately, the post is from March 27, 2020, but their privacy policy was last updated in December. I believe they will update it soon to reflect those changes, but the dashboard actually works. Take a look

1588290688097.png


1588290728720.png


1588290765020.png
Other interesting options:
1588290815886.png

Do you know what the suspicious responses do?

1588290837898.png


1588290870425.png



Source https://umbrella.cisco.com/blog/privacy-policy-update; Visualize your DNS with the OpenDNS Dashboard - Cisco Umbrella
 
Last edited:

RejZoR

Level 15
Verified
Top Poster
Well-known
Nov 26, 2016
699
It's rather useless. It should have "no logs" policy by default for anyone not using the account. Like, what's the point of no log policy when you're forced to create an account and tie your other user information to the data they have/gather?

NextDNS has zero logs policy by default and if you create account it's 3 months logs by default with option to turn it off entirely. Or change it to whatever interval desired, even to 1 day so you can use logs to debug block lists but they are then gone next day. Or to go even further, they even allow you to decide WHERE to store the logs. USA, EU or specifically countries with strong privacy laws like Switzerland. That's how it should be done by everyone. I don't think this OpenDNS's move will attract anyone back...
 

Tiamati

Level 12
Thread author
Verified
Top Poster
Well-known
Nov 8, 2016
574
It's rather useless. It should have no logs policy by default for anyone not using the account. Like, what's the point of a no-log policy when you're forced to create an account and tie your other user information to the data they have/gather?

The mentioned account only requires your e-mail and IP. The IP they would get anyway from your DNS queries, and the e-mail you can create on exclusively for that. So I don't see that as a problem.

For OPENDNS is a "win-win" policy. They respect privacy concerned user while can collect data from those that don't care and allow them to keep logs indefinitely.

I think it's a huge improvement from a company that has excellent service but used to store every data from its users. It's by far the fastest DNS in my region, but I didn't use them exactly because of their privacy policy. Their update, made me change my DNS.
 

TairikuOkami

Level 35
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,452
Unless OpenDNS account manages to take advantage of IPv6 than it is useless, since most people these days have a private IP.
I have tried it once and then I got angry emails from people using my IP and OpenDNS, because I have blocked porn for everyone.
 

Tiamati

Level 12
Thread author
Verified
Top Poster
Well-known
Nov 8, 2016
574
I agree. OpenDNS is fast and filters allright.

And I'd rather trust Cisco with my data than most other parties. Despite that, I disabled logging
Indeed. The biggest problem with them was the privacy policy, and now those options seem to solve that problem :)

Unless OpenDNS account manages to take advantage of IPv6 than it is useless since most people these days have a private IP.
I have tried it once and then I got angry emails from people using my IP and OpenDNS, because I have blocked porn for everyone.

Their Dashboard doesn't support IpV6 yet. But the only thing you need to do is use the Ipv6 address without the porn filters...
I believe you set the wrong IpV6 as
2620:119:35::35 and 2620:119:53::53
should only have malware/phishing filtering. However, if you set them and still had the problem, there are a few options like disabling Ipv6, using IpV6 without any filter at all or redirecting to IpV4

1588377045219.png

Source: Does OpenDNS Support IPv6?



1588377202546.png



Anyway, dashboard new configs have been only recently updated, maybe openDNS will allow IpV6 filter in the near future.
 

blackice

Level 38
Verified
Top Poster
Well-known
Apr 1, 2019
2,730
Unless OpenDNS account manages to take advantage of IPv6 than it is useless, since most people these days have a private IP.
I have tried it once and then I got angry emails from people using my IP and OpenDNS, because I have blocked porn for everyone.
This is a common problem for OPENDNS. If someone forgets to unenroll their IP when their IP changes, or have a case like yours, some kid yells on reddit about missing his porn.

This is why they have the IP updating tool for download, to make sure this doesn’t happen.
 

Tiamati

Level 12
Thread author
Verified
Top Poster
Well-known
Nov 8, 2016
574
This is a common problem for OPENDNS. If someone forgets to unenroll their IP when their IP changes, or have a case like yours, some kid yells on reddit about missing his porn.

This is why they have the IP updating tool for download, to make sure this doesn’t happen.

Yeap, in case you have dynamic ip, the ip updating tool is needed...
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top