I read a bit about using a different DNS for Privacy and I think the best one should be quad9? Or is there anything better except self hosting a DNS?
I read a bit about using a different DNS for Privacy and I think the best one should be quad9? Or is there anything better except self hosting a DNS?
The one from your ISP. Your ISP can see your traffic anyway, so you gain nothing by using a third-party DNS server.
deleted by creator
Okay, maybe I got the question wrong. If you care about content blocking, then you are right (though I’d prefer self-hosted resolvers like pi-hole or AdGuard Home over third party resolvers).
deleted by creator
If you use the same or similar blocklist it does not provide additional protection though.
deleted by creator
Even if you use DOH for upstream servers?
In the end it comes down to what your goals is. DOH indeed hides DNS queries from sniffers and your ISP, but the traffic between you and your destination is still visible for the ISP (unless you use a VPN or TOR).
If you only care about the content blocking aspect a third party resolver may make sense as @CrazyClown@lemmy.ca explained below.
Yes, my question was just referred to DNS queries. Thank you for your reply.
As far as I read (I’m no expert!) they could check the SNI of the TLS handshake if they want. But using the DNS of the ISP is handing them the data right in a way they can analyze/use them very easily afaik?
Still learning about this topic!
They route your traffic, hence they can see all IP addresses you communicate with. With a reverse lookup you can then usually find out the address too.
deleted by creator
Mt ISP can’t see my traffic or my DNS lookups lol
Congrats but then you are using more than just another DNS resolver/different DNS technology.
Yes, if you want privacy then you need a good VPN provider
HA! My ISP injects ads into search results with their DNS. No thanks!
deleted by creator