I maintain an easy public resource on home WiFi security, I’ll update it if there’s news that requires anything new.https://decentsecurity.com/#/routerwifi-configuration/ …
Opendns used to do NxDomain hijacking but afaik stopped. They still return filtered/doctored results rather than ones matching authoritative
-
-
Interesting. I've never heard that before.
-
Their whole purpose is blocking domains deemed malware.
-
Sure, but could be a benefit for security-illiterate users. Not how I'd personally want my dns to work, but there's a solid use case.
-
If you want that behavior you need to use only opendns. If you also include 8.8.8.8 you'll get unpredictably inconsistent blocking...
-
..and since 8.8.8.8 is much faster, in practice you won't get much blocking.
-
Using mutually inconsistent dns servers is a really bad idea tho in that it leads to hard-to-diagnose behavior.
-
Fair. I don't know that I've ever mixed servers the way Swifty recommends, but I certainly won't in the future.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.