[ale] Secure dns queries

Jim Kinney jim.kinney at gmail.com
Sun Apr 2 22:39:07 EDT 2017


I think I've found a decent, easy solution:

https://dnscrypt.org/

On Apr 2, 2017 10:12 PM, "Dustin Priest" <dustin.h.strickland at gmail.com>
wrote:

> Adding to VPN, another possibility may be to make a gateway that routes
> all traffic from your LAN to the internet through TOR. I recall seeing
> something called Onion Pi or similar that does this with a Raspberry Pi if
> you want an easy drop-in solution.
>
>
> On 4/2/2017 8:16 PM, Alex Carver wrote:
>
>> On 2017-04-02 16:56, Jim Kinney wrote:
>>
>>> With the new "Comcast can sell your data" crap, I've been looking at
>>> various
>>> privacy solutions (vpn, tor, etc) and I realized a metadata problem:
>>> dns. The
>>> queries are NOT encrypted. The security is in place to prevent/slow
>>> bogus data
>>> but "Fred's looking up the IP address for another pr0n site" data still
>>> exists.
>>>
>>> Solutions. Comments.
>>>
>> You can tunnel your DNS queries over VPN if you set up full VPN.  If
>> you're just wanting to cover the browser and leave everything else then
>> set the browser up for SOCKS 5, tunnel over SSH to a remote host and
>> enable the setting for DNS over SOCKS in the browser which will use the
>> tunnel endpoint DNS resolver instead of yours.  You can't hide from that
>> end's resolver records but your ISP won't have them.
>>
>> _______________________________________________
>> Ale mailing list
>> Ale at ale.org
>> http://mail.ale.org/mailman/listinfo/ale
>> See JOBS, ANNOUNCE and SCHOOLS lists at
>> http://mail.ale.org/mailman/listinfo
>>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20170402/e7274f32/attachment.html>


More information about the Ale mailing list