Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
General Apps
VPN and DNS
Should I Change My ISP DNS Server Even if It is the Fastest?
Message
<blockquote data-quote="blackice" data-source="post: 1086237" data-attributes="member: 79035"><p>A lot of ISPs show like this on dnscheck.tools test. Verizon actually does the same thing in the USA. I'm unclear if it means they only check for valid signatures, or that they are accepting bad signatures instead of rejecting them. I've never seen the yellow Xs. Sometimes it takes a couple runs to validate the DNSSEC stuff. If it always shows only green on the good signatures, but red Xs on the rest, then they aren't implementing DNSSEC properly. Not the end of the world, but it does mean there's a vulnerability to DNS spoofing. I would research it and see what you're comfortable with. Honestly most DNS traffic just goes where it should. It was designed to be simple and just work, but DNS hijacking does occasionally occur.</p></blockquote><p></p>
[QUOTE="blackice, post: 1086237, member: 79035"] A lot of ISPs show like this on dnscheck.tools test. Verizon actually does the same thing in the USA. I'm unclear if it means they only check for valid signatures, or that they are accepting bad signatures instead of rejecting them. I've never seen the yellow Xs. Sometimes it takes a couple runs to validate the DNSSEC stuff. If it always shows only green on the good signatures, but red Xs on the rest, then they aren't implementing DNSSEC properly. Not the end of the world, but it does mean there's a vulnerability to DNS spoofing. I would research it and see what you're comfortable with. Honestly most DNS traffic just goes where it should. It was designed to be simple and just work, but DNS hijacking does occasionally occur. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
