<ahref="#dns"><iclass="fas fa-link anchor-icon"></i></a> Encrypted Domain Name System (DNS) Resolvers
</h1>
<h4>Terms</h4>
<ul>
<li><strong>DNS-over-TLS (DoT)</strong> - A security protocol for encrypted DNS on a dedicated port 853. Some providers support port 443 which generally works everywhere while port 853 is often blocked by restrictive firewalls.
<li><strong>DNS-over-HTTPS (DoH)</strong> - Similar to DoT, but uses HTTPS instead, being indistinguishable from "normal" HTTPS traffic on port 443. <spanclass="badge badge-warning"data-toggle="tooltip"data-original-title="DoH contains metadata such as user-agent (which may include system information) that is sent to the DNS server."><ahref="https://tools.ietf.org/html/rfc8484#section-8.2"><iclass="fas fa-exclamation-triangle"></i></a></span></li>
<li><strong>DNSCrypt</strong> - An older yet robust method of encrypting DNS.</li>
<strong>Note: Using an encrypted DNS resolver will not make you anonymous, nor hide your internet traffic from your Internet Service Provider. But, it will prevent DNS hijacking, and make your DNS requests harder for third parties to eavesdrop on and tamper with. If you are currently using Google's DNS resolver, you should pick an alternative here.</strong>
<spanclass="badge badge-warning"data-toggle="tooltip"data-original-title="And some wildcard and IDN domains."><ahref="https://github.com/ookangzheng/blahdns#default-blocked-wildcard-domain"><iclass="fas fa-exclamation-triangle"></i></a></span>
<ahref="https://developers.cloudflare.com/1.1.1.1/setting-up-1.1.1.1/">Cloudflare</a><spanclass="badge badge-warning"data-toggle="tooltip"title="Cloudflare is one of the world's largest networks, and a problem considering anonymity and decentralization."><ahref="https://codeberg.org/crimeflare/cloudflare-tor/"><iclass="fas fa-exclamation-triangle"></i></a></span>
<td><adata-toggle="tooltip"data-placement="bottom"data-original-title='"We will collect limited DNS query data that is sent to the resolvers. This data does not contain user IP addresses or any other personally identifiable information, and the bulk of the data is only stored for 24 hours."'href="https://developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/privacy-policy/">Some</a></td>
<td><adata-toggle="tooltip"data-placement="bottom"data-original-title='"CZ.NIC is an interest association of legal entities, founded in 1998 by leading providers of Internet services."'href="https://www.nic.cz/page/351/about-association/">Association</a></td>
<td><adata-toggle="tooltip"data-placement="bottom"data-original-title='"We do NOT log your IP address or DNS queries during normal operations. We do NOT share query data with third parties that are not directly involved with resolving the query (i.e. sending queries to authoritative nameservers for resolution)."'href="https://appliedprivacy.net/privacy-policy/">Some</a></td>
<adata-toggle="tooltip"data-placement="bottom"data-original-title='"Some of the features require some sort of data retention. In that case, we give our users the choice to granularly or completely disable those features (and associated data retention), and we follow up immediately on that promise"'href="https://www.nextdns.io/privacy">Based on user choice</a>
<adata-toggle="tooltip"data-placement="bottom"data-original-title='Part of LibreHosters, "a network of cooperation and solidarity that uses free software to encourage decentralisation through federation and distributed platforms."'href="https://libreho.st/">
<ahref="https://quad9.net/">Quad9</a><spanclass="badge badge-warning"data-toggle="tooltip"title="Founders include the Global Cyber Alliance, composed of the City of London Police and Manhattan District Attorney's Office"><iclass="fas fa-exclamation-triangle"></i></span>
<td><adata-toggle="tooltip"data-placement="bottom"data-original-title='"Our normal course of data management does not have any IP address information or other PII logged to disk or transmitted out of the location in which the query was received."'href="https://quad9.net/policy/">Some</a></td>
<adata-toggle="tooltip"data-placement="bottom"data-original-title="Part of LibreHosters, "a network of cooperation and solidarity that uses free software to encourage decentralisation through federation and distributed platforms.""href="https://libreho.st/">
title=""Absolutely nothing is being logged, neither about the users nor the usage of this service. I do keep graphs of the total number of queries, but no personally identifiable information is saved. The data that is saved will never be sold or used for anything except capacity planning of the service.""
