DNS servers

u wot m8?

what's confusing about my fucking statement?

ISP IPs usually have a ptr record that contain a root suffix that denotes the name of the ISP or an identifiable name linking to an ISP.

How is encrypting dns useless and retarded?

sudo apt-get install dns-encrypt
dns-encrypt --encrypt-what encrypt-my-dns

how does encrypting that information doing you any good?

are you implying that encrypted dns returns are more trustworthy than unencrypted returns?

...

It stops your ISP knowing what sites you go to

and that's important why?

Because many of us live in countries where going to certain websites could get us in trouble

Knowledge is power.

Closest OpenNIC server

No it doesn't, you fucking retard. It prevents DNS spoofing, that's it.

>OpenNIC
How do you like it? I've been considering it.

Any DNS that supports that? I thought the protocol didn't admit it.

I've had no issues with it. It feels just as fast as the Google Public DNS but less botnet.

Neat, I'm jumping ship next time I wake up. Thanks user.

...

Does it make a difference how many servers are returned if all belong to my DNS company? (OpenDNS)

I use Google DNS.

8.8.8.8
8.8.4.4

So on the rare chance you come across a site that isn't using some sort of Google feature on it they still know where you go. Nice.

I don't care.

russia is currently in transition to local version of great china firewall, all ISPs are required to install government tracker device and are soon going to record all traffic, some ISPs go full evil trying to mitm https, so things like vpn and dnscrypt become relevant.

>I use Google DNS.
Biggest retard ever! Everyone, laugh at this moron.

I use Yandex DNS.

77.88.8.8
77.88.8.1

I just changed to OpenNIC and on the test it shows a company in my country that I've never heard of.

What does this mean? Are they MitMing me?

i dont use dns

i just manually enter ip address

go ahead retard, debate me

What's the best DNS? Which one is the default Windows/Linux/Mac one?

I use Comodo DNS.

8.26.56.26
8.20.247.20

Doesn't really matter though tbhbbqfam

>I use Yandex DNS.
>
>77.88.8.8
>77.88.8.1
PROTIP: Use Yandex browser as it encrypts ALL DNS queries so they can't be spied on by NSA or any other intelligence agency.

>thinks there isn't a backdoor for the FSB
>thinks the FSB is better than NSA
>Giving Putin your personal porn collection
>Thinks Putin wouldn't expose you to the world for your golden shower fetish

Absolute Kremlin shill here.

Could someone please tell me about DNS and all of that stuff. I am also interested in why I should change it. Thanks, I have never put that much interest in this area.

It's just autism.

can FSB put you in jail?
NSA and google/ms/etc can.

that's what i use

The FSB will use it to blackmail you if you're ever a successful person or you work in the public sector in any capacity.

NSA doesn't give a shit about your cuckold porn unless you're planning to do terrorism or download HD ClubPenguin rape.

>The FSB will use it to blackmail you if you're ever a successful person or you work in the public sector in any capacity.
No worries there, then. NSA can do the same thing.

>NSA doesn't give a shit about your cuckold porn unless you're planning to do terrorism or download HD ClubPenguin rape.
STFU. Enjoy being a fucking cuck and a sheep. I bet you also use Windows. KEK

>too poor to not use Windows 10 Enterprise edition
>Kremlin cuckold and shill

There are constitutional guarantees and legal restraints within the U.S. government, but Russia is a hybrid authoritarian regime that will abuse your human rights and privacy. If you actually think your information is safer in Russia, then you are an idiot. They have been using blackmail for decades, and they don't have as strict standards as dealing with your personal information. Your stuff will mostly stay safe with the NSA, but with the massive corruption in Russia. Your personal information could probably be bought.

nah they'll just stuff you into diplomatic luggage and ship you to vladivostok in a private flight

>constitutional guarantees
TOP KEK! You just made me laugh in real life. LAUGHABLE!

Where the fuck have you been for the past 4 years when Snowden exposed NSA?

NSA doesn't give a fuck about Constitution. Clapper even lied to Congress and suffered no consequences.

Also, look up parallel construction.

>nah they'll just stuff you into diplomatic luggage and ship you to vladivostok in a private flight
Name one American to whom that has happened.

reuters.com/article/us-dea-sod-idUSBRE97409R20130805

And fuck off gov thugs.

>Name one American to whom that has happened.
Eddy Snowden

It's the US's fault hes even there instead of where he wanted to be in Ecuador, his passport got revoked so he couldn't leave the country anymore.

all that NSA/FBI shilling... hope you're getting paid for it, gov pig.

You forgot the best part, imprisonment without a trial is entirely legal now. We squawk about Russia, yet everyone here seems to have no problem with the feds being able to throw a bag over your head and making you disappear.

that's what they told him to say

...

When choosing a dns-encrypt resolver, does location matter much? I really down want to slow my shit down too much.

I really DON"T want to...

very true.Constitution has been completely eroded.

>When choosing a dns-encrypt resolver, does location matter much? I really down want to slow my shit down too much.
OF COURSE! Simple rule: does the gov of the DNS tunnel endpoint cooperate with the NSA. if it does, you might as well not encrypt since they'll get your data and also put you on a list of ppl to watch for.

for your DNS endpoint, always pick the country that is known not to cooperate. that pretty much eliminates all of the Western Europe, USA, Canada, NZ, Australia etc.

If you think America is bad, then you clearly haven't ever had any experience dealing with Russia or you're an agent of the Kremlin.

Either way, there are more legal protections for your data within the NSA than there will ever be within the FSB. A regime which doesn't recognize laws, and will imprison you without trial for saying "Russia for Russians".

I don't give a fuck about russia, you fucking shill. all I'm saying is that my data is SAFER in the russia because the LEOs and courts can't access it.

US companies are known to cooperate with LEOs to the point that many of them employ former agents and are actively looking for ways to put people in jail.

when it comes to risk, putting data on russian servers is 100x less risky because who the fuck knows what will become illegal in the US in the next few years/decades.

you're too stupid to realize that.

As few constitutional protections as Americans have on their data with the NSA gobbling it all up they have even less protection on anything that leaves their borders. Anything on its way to or from a foreign source is fair game where as anything that is US only and gets caught up in their monitoring is supposed to get minimized and not used for surveillance unless you are specifically targeted.

It's a shitshow no matter what.

Just gives me my IP back since everything on my network uses DHCP and my router runs pfSense and a DNS server that then goes to OpenNIC.

>A regime which doesn't recognize laws, and will imprison you without trial for saying
You aren't very familiar with America's "Patriot"Act, are you? You can be jailed for anything the government does not like. It's virtually the same thing, probably used less, but nontheless, the same power is there.

>use https everywhere
>feel secure against mitm
>tfw https encryption is susceptible to brute force
>all https traffic is recorded
>10-15 years pass
>every pajeet can bruteforce 1994-2017+ https logs with quantum computer
>all https gibberish logs are decrypted
>goverment pajeets spend their time linking shemale furrys porn you posted on Sup Forums in 2005 back to you
>the end

It just says "test in progress". It's been going for like five minutes. Is this because I run my own recursive DNS server?

>make a folder with a random name
>place porn in folder with name #(number)
>change all vid formats to incorrect i.e .py .sh
when you want to watch open folder, rename to mp4 or whatever, when yah spunked name back... simples

You'll be extremely dumb to use it. No ECDN support would mess up CDN routing. Also higher latencies. Stick to ISP's DNS or just use Google DNS/OpenDNS

How bad are the latencies for uncached queries?

my man your bait was so shit no one even told you shit ahahha 2/10 made me chuckle and reply

You obviously haven't used AT&T's DNS via DSL :^)

Even using a DNS several states away results in lower ping

Then use Google DNS or OpenDNS. Using DNS servers not from your same AS will severely mess up routing, unless they have ECDN support. Or you can run your own recursor but that'll create a lot of latency for queries.

don't use google dns, they have enough data on you already

Use Unbound + OpenResolv, Sup Forums. It's very simple and speeds up things. I also set it up to cache DNS entires for 2 days (default is 1day IIRC).

wiki.archlinux.org/index.php/Unbound

I've been lurking for CP since /l/ still exist and browsing onion using normal browser for almost 15 years.
Also been doing it on my phone.

Its kinda sad when no one even notice you on the internet or real life.

ok, good latency too

tbqh I'd rather have the FSB spy on me than the NSA
>use it to blackmail you if you're ever a successful person
Blackmail me with what? I have a fetish for golden showers and bbw?
If you aren't watching cp and aren't a government whistleblower you have absolutely nothing to hide from the authorities.

yandex dns is literally 4x faster than open/google

>private vpn server
>opendns
Did i do good?

>using russian botnet