Advice Request What DNS client to use?

Please provide comments and solutions that are helpful to the author of this topic.

TairikuOkami

TairikuOkami

Level 37
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,641
  • Like
  • Thanks
  • +Reputation
Reactions: Nevi, blackice, The_King and 2 others
Divine_Barakah

Divine_Barakah

Level 33
Thread author
Verified
Top Poster
Well-known
May 10, 2019
2,289
  • Like
Reactions: oldschool, Nevi, n8chavez and 3 others
The_King

The_King

Level 12
Verified
Top Poster
Well-known
Aug 2, 2020
549
TairikuOkami said:
Yes, it is currently at version 2.0.42, you can use an updated DNSCrypt Proxy 2.0.45, but with no GUI unfortunately, CMD setup might be challenging.
github.com

GitHub - DNSCrypt/dnscrypt-proxy: dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.

dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols. - DNSCrypt/dnscrypt-proxy
github.com github.com
Click to expand...
I was easily able to extract DNSCrypt Proxy 2.0.45 over version 2.0.42 in C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy

Its seems to be working just fine. WIll need to test it further but it seems stable so far.
dns.jpg
 
Last edited by a moderator:
  • Like
  • Applause
Reactions: oldschool, blackice, TairikuOkami and 1 other person
Eggnog

Eggnog

Level 3
Verified
Well-known
Mar 21, 2018
108
EndangeredPootis said:
YogaDNS with NextDNS.
Click to expand...
This is the sweet spot for me, as well. I had a whale of a time recently, though, with NextDNS not recognizing Microsoft services, i.e., network connection (did not affect actually connecting to the internet), weather, MS store, etc. In case anyone else has the problem I resolved it by adding www.msftconnecttest.com and dns.msftncsi.com to my NextDNS allow list. So far it's still purring right along.
 
  • Like
Reactions: oldschool, Divine_Barakah, Back3 and 2 others
n8chavez

n8chavez

Level 19
Well-known
Feb 26, 2021
949
SecurityNightmares said:
That's how DNS works and with every DNS service and program possible ;)
You can do that also directly in Windows
Click to expand...

Correct. But not securely (yet). That function is in the testing ring. I wasn't sure what constituted a client because Adguard is not like YogaDNS, DNScrypt, nebulo, etc.
 
n8chavez

n8chavez

Level 19
Well-known
Feb 26, 2021
949
SecurityNightmares said:
What did you mean? DNS changes on OS level need admin rights, so it is secure.

Using clients for DNS is insecure, increase attack surface and complexity/ instability.
Click to expand...
I mean that Windows does not yet allow for DoH or LoT at the OS level, but it will soon. It has nothing it do with admin rights, and everything to do with encryption.
 
F

ForgottenSeer 85179

n8chavez said:
I mean that Windows does not yet allow for DoH or LoT at the OS level, but it will soon. It has nothing it do with admin rights, and everything to do with encryption.
Click to expand...
Adding upcoming DoH in Windows need admin rights too.

Still don't understand what you mean with secure.
Encrypted DNS isn't for security.
 
  • Like
Reactions: oldschool and blackice
n8chavez

n8chavez

Level 19
Well-known
Feb 26, 2021
949
SecurityNightmares said:
Adding upcoming DoH in Windows need admin rights too.

Still don't understand what you mean with secure.
Encrypted DNS isn't for security.
Click to expand...
Sure it it. Any time something is encrypted you add security. So, I don't get your argument that encrypted DNS isn't for security when that is literally the point of encryption. Now, one can make the argument that encrypted DNS isn't needed, but that comes down to preference. Again, I'm talking about encrypted DNS, so I don't understand your fascination with local privilegesj. That's apples and oranges. One has nothing to do with the other.
 
  • Applause
  • Like
Reactions: oldschool and Brahman
Kuttz

Kuttz

Level 13
Verified
Top Poster
Well-known
May 9, 2015
630
n8chavez said:
Sure it it. Any time something is encrypted you add security. So, I don't get your argument that encrypted DNS isn't for security when that is literally the point of encryption. Now, one can make the argument that encrypted DNS isn't needed, but that comes down to preference. Again, I'm talking about encrypted DNS, so I don't understand your fascination with local privilegesj. That's apples and oranges. One has nothing to do with the other.
Click to expand...


Encrypted DNS is all about privacy than security. You can still easily get infected by malwares despite sitting on an encrypted DNS configuration.
 
  • +Reputation
  • Like
Reactions: oldschool and ForgottenSeer
n8chavez

n8chavez

Level 19
Well-known
Feb 26, 2021
949
Kuttz said:
Encrypted DNS is all about privacy than security. You can still easily get infected by malwares despite sitting on an encrypted DNS configuration.
Click to expand...
DoH is, yes. DoT is not. As a whole, encryption is about security.
 

Similar threads

Divine_Barakah
    • Like
Advice Request Pivate DNS settings in browsers and Adgaurd Desktop
Replies
16
Views
881
General Privacy Discussions
rashmi
rashmi
X195
    • Like
Advice Request Help needed with DNS configuration
Replies
15
Views
973
AdGuard
Chuck57
Chuck57
silversurfer
    • Like
    • Applause
    • +Reputation
New Update AdGuard DNS now supports Structured DNS Errors. Here’s what it means
Replies
3
Views
391
AdGuard
franz
franz

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top