<div dir="auto">I think I've found a decent, easy solution:<div dir="auto"><br></div><div dir="auto"><a href="https://dnscrypt.org/">https://dnscrypt.org/</a><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Apr 2, 2017 10:12 PM, "Dustin Priest" <<a href="mailto:dustin.h.strickland@gmail.com">dustin.h.strickland@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Adding to VPN, another possibility may be to make a gateway that routes all traffic from your LAN to the internet through TOR. I recall seeing something called Onion Pi or similar that does this with a Raspberry Pi if you want an easy drop-in solution.<br>
<br>
<br>
On 4/2/2017 8:16 PM, Alex Carver wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
On 2017-04-02 16:56, Jim Kinney wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
With the new "Comcast can sell your data" crap, I've been looking at various<br>
privacy solutions (vpn, tor, etc) and I realized a metadata problem: dns. The<br>
queries are NOT encrypted. The security is in place to prevent/slow bogus data<br>
but "Fred's looking up the IP address for another pr0n site" data still exists.<br>
<br>
Solutions. Comments.<br>
</blockquote>
You can tunnel your DNS queries over VPN if you set up full VPN. If<br>
you're just wanting to cover the browser and leave everything else then<br>
set the browser up for SOCKS 5, tunnel over SSH to a remote host and<br>
enable the setting for DNS over SOCKS in the browser which will use the<br>
tunnel endpoint DNS resolver instead of yours. You can't hide from that<br>
end's resolver records but your ISP won't have them.<br>
<br>
______________________________<wbr>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/li<wbr>stinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/li<wbr>stinfo</a><br>
</blockquote>
<br>
______________________________<wbr>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/li<wbr>stinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" rel="noreferrer" target="_blank">http://mail.ale.org/mailman/li<wbr>stinfo</a><br>
</blockquote></div></div>