privacyguides
/
privacytools.io
Archived
1
0
Fork 0
Code Issues 304 Pull Requests 47 Activity

🆕 Software Suggestion | DNS server software for advanced users #1055

New Issue
Open
opened 2019-07-25 14:01:08 +00:00 by Mikaela · 5 comments
Mikaela commented 2019-07-25 14:01:08 +00:00 (Migrated from github.com)
Copy Link

This is salvaged from #1028 which solution #1054 I cut.

  • dnssec-trigger (edited in afterwards, it's not so advanced)
  • Unbound (software)
  • Bind (software)
  • PowerDNS (software)
  • the DNSCrypt server (I need to read more details) DNSCrypt Server Proxy (software)

The below is copy-pasted from nitrohorse's first comment, thanks 💜

Name: DNSSEC-Trigger
Category: Software
Description: "DNSSEC-Trigger is experimental software that enables your computer to use DNSSEC protection for the DNS traffic."
URLs:

Name: Unbound
Category: Software
Description: "Unbound is a validating, recursive, caching DNS resolver. It is designed to be fast and lean and incorporates modern features based on open standards."
URLs:

Name: BIND 9
Category: Software
Description: "BIND 9 is the most widely used DNS software on the Internet. It performs both of the main DNS server roles – acting as an authoritative name server for one or more specific domains, and acting as a recursive resolver for the DNS system generally."
URLs:

Name: PowerDNS
Category: Software
Description: "PowerDNS is a DNS server, written in C++ and licensed under the GPL."
URLs:

Name: DNSCrypt
Category: Protocol
Description: "DNSCrypt is a network protocol which authenticates and encrypts Domain Name System (DNS) traffic between the user's computer and recursive name servers."
URLs:

This is salvaged from #1028 which solution #1054 I cut. * [ ] dnssec-trigger (edited in afterwards, it's not so advanced) * [x] Unbound (software) * [ ] Bind (software) * [ ] PowerDNS (software) * [ ] ~~the DNSCrypt server (I need to read more details)~~ DNSCrypt Server Proxy (software) The below is copy-pasted from nitrohorse's first comment, thanks :purple_heart: * * * * * **Name:** DNSSEC-Trigger **Category:** Software **Description:** "DNSSEC-Trigger is experimental software that enables your computer to use DNSSEC protection for the DNS traffic." **URLs:** - [Project](https://www.nlnetlabs.nl/projects/dnssec-trigger/about/) - [GitHub](https://github.com/NLnetLabs/dnssec-trigger) **Name:** Unbound **Category:** Software **Description:** "Unbound is a validating, recursive, caching DNS resolver. It is designed to be fast and lean and incorporates modern features based on open standards." **URLs:** - [Project](https://nlnetlabs.nl/projects/unbound/about/) - [GitHub](https://github.com/NLnetLabs/unbound) **Name:** BIND 9 **Category:** Software **Description:** "BIND 9 is the most widely used DNS software on the Internet. It performs both of the main DNS server roles – acting as an authoritative name server for one or more specific domains, and acting as a recursive resolver for the DNS system generally." **URLs:** - [Project](https://www.isc.org/bind/) - [GitLab](https://gitlab.isc.org/isc-projects/bind9) **Name:** PowerDNS **Category:** Software **Description**: "PowerDNS is a DNS server, written in C++ and licensed under the GPL." **URLs:** - [Project](https://www.powerdns.com/) - [GitHub](https://github.com/PowerDNS/pdns) **Name:** DNSCrypt **Category:** Protocol **Description:** "DNSCrypt is a network protocol which authenticates and encrypts Domain Name System (DNS) traffic between the user's computer and recursive name servers." **URLs:** - [Project](https://dnscrypt.info/) - [GitHub](https://github.com/dnscrypt)
nitrohorse commented 2019-07-26 02:34:28 +00:00 (Migrated from github.com)
Copy Link

First go at it:

Name: DNSSEC-Trigger
Category: Software
Description: "DNSSEC-Trigger is experimental software that enables your computer to use DNSSEC protection for the DNS traffic."
URLs:

Name: Unbound
Category: Software
Description: "Unbound is a validating, recursive, caching DNS resolver. It is designed to be fast and lean and incorporates modern features based on open standards."
URLs:

Name: BIND 9
Category: Software
Description: "BIND 9 is the most widely used DNS software on the Internet. It performs both of the main DNS server roles – acting as an authoritative name server for one or more specific domains, and acting as a recursive resolver for the DNS system generally."
URLs:

Name: PowerDNS
Category: Software
Description: "PowerDNS is a DNS server, written in C++ and licensed under the GPL."
URLs:

Name: DNSCrypt
Category: Protocol
Description: "DNSCrypt is a network protocol which authenticates and encrypts Domain Name System (DNS) traffic between the user's computer and recursive name servers."
URLs:

First go at it: **Name:** DNSSEC-Trigger **Category:** Software **Description:** "DNSSEC-Trigger is experimental software that enables your computer to use DNSSEC protection for the DNS traffic." **URLs:** - [Project](https://www.nlnetlabs.nl/projects/dnssec-trigger/about/) - [GitHub](https://github.com/NLnetLabs/dnssec-trigger) **Name:** Unbound **Category:** Software **Description:** "Unbound is a validating, recursive, caching DNS resolver. It is designed to be fast and lean and incorporates modern features based on open standards." **URLs:** - [Project](https://nlnetlabs.nl/projects/unbound/about/) - [GitHub](https://github.com/NLnetLabs/unbound) **Name:** BIND 9 **Category:** Software **Description:** "BIND 9 is the most widely used DNS software on the Internet. It performs both of the main DNS server roles – acting as an authoritative name server for one or more specific domains, and acting as a recursive resolver for the DNS system generally." **URLs:** - [Project](https://www.isc.org/bind/) - [GitLab](https://gitlab.isc.org/isc-projects/bind9) **Name:** PowerDNS **Category:** Software **Description**: "PowerDNS is a DNS server, written in C++ and licensed under the GPL." **URLs:** - [Project](https://www.powerdns.com/) - [GitHub](https://github.com/PowerDNS/pdns) **Name:** DNSCrypt **Category:** Protocol **Description:** "DNSCrypt is a network protocol which authenticates and encrypts Domain Name System (DNS) traffic between the user's computer and recursive name servers." **URLs:** - [Project](https://dnscrypt.info/) - [GitHub](https://github.com/dnscrypt)
❤️ 1
Mikaela commented 2019-08-06 12:18:38 +00:00 (Migrated from github.com)
Copy Link

I am told that we are confusing recursive resolvers and authoritative nameservers here.

  • dnssec-trigger doesn't belong to the group
  • mostly authoritative resolvers: Bind9, PowerDNS
  • mostly recursive: Unbound
  • unknown: dnscrypt

Suggested reading:

I like how the https://cr.yp.to/djbdns.html titles things: "Finding addresses of computers around the Internet" vs. "Publishing addresses of your own computers"

I am told that we are confusing recursive resolvers and authoritative nameservers here. * dnssec-trigger doesn't belong to the group * mostly authoritative resolvers: Bind9, PowerDNS * mostly recursive: Unbound * unknown: dnscrypt Suggested reading: > I like how the https://cr.yp.to/djbdns.html titles things: "Finding addresses of computers around the Internet" vs. "Publishing addresses of your own computers"
👍 1
Mikaela commented 2019-08-17 17:33:19 +00:00 (Migrated from github.com)
Copy Link

Idea and I and @nitrohorse talked on the team chat: link to my unbound.conf.d/dns-over-tls.conf as worth mentioning so everyone doesn't have to go and find the information separately. I think I list everything else than NextDNS.

I also have some other unbound.conf.d files, but I don't think anything else would be interesting and my dotfiles are messy.

Idea and I and @nitrohorse talked on the team chat: link to my [unbound.conf.d/dns-over-tls.conf](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/unbound/unbound.conf.d/dns-over-tls.conf) as worth mentioning so everyone doesn't have to go and find the information separately. I think I list everything else than NextDNS. I also have some other [unbound.conf.d](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/unbound/unbound.conf.d) files, but I don't think anything else would be interesting and my dotfiles are messy.
👍 1
Mikaela commented 2019-09-20 16:57:13 +00:00 (Migrated from github.com)
Copy Link

https://github.com/DNSCrypt/dnscrypt-proxy/issues/937 - DNSCrypt Server Proxy has been announced and likely affects this issue.

https://github.com/DNSCrypt/dnscrypt-proxy/issues/937 - DNSCrypt Server Proxy has been announced and likely affects this issue.
Mikaela commented 2019-10-02 15:00:49 +00:00 (Migrated from github.com)
Copy Link

Team chat has suggested that this could be out-of-scope

Team chat has suggested that this could be out-of-scope
This repo is archived. You cannot comment on issues.
No Branch/Tag Specified
Branches Tags
master
dependabot/bundler/nokogiri-1.13.6
dependabot/bundler/addressable-2.8.0
freddy-m-patch-3
pr-add_RemoveMyPhone_sponsor
pr-browser_cleanup_1257_1328_1430
freddy-m-patch-2
freddy-m-patch-1
pr-vpn_hated_one_video
cdn
update-nitrohorse-image
promote-metager-to-card
hardware
pr-add_azirevpn
pr-add_mailfence
shop
1673
pr/1658
i18n-simple
sponsorship-edits-nov2019
i18n
ipfs
blacklight447-ptio-patch-3
blog
remove-windows-icons
pr/1147
i18n-testing
add-beautify
Labels
Clear labels   
🔍🤖 Search Engines

   
approved

approved, waiting for a PR

  
dependencies

Pull requests that update a dependency file

  
duplicate

   
feedback wanted

   
high priority

   
I2P

The Invisible Internet Project (I2P)

  
iOS

   
low priority

   
OS

Operating Systems

  
Self-contained networks

   
Social media

   
stale

A label for stalebot if it gets added

  
streaming

Anything related to media streaming.

  
todo

   
Tor

Anything covering the Tor network

  
WIP

active work in progress, do not merge or PR (yet)!

  
wontfix

Issues or bugs that will not be fixed and/or do not have significant impact on the project.

  
XMPP

Extensible Messaging and Presence Protocol

  
[m]

Matrix protocol

  
₿ cryptocurrency

   
ℹ️ help wanted

   
↔️ file sharing

   
⚙️ web extensions

Browser Extension related issues

  
enhancement

   
software removal

   
💬 discussion

   
🤖 Android

   
🐛 bug

   
💢 conflicting

   
📝 correction

Correction of content on the website

  
🆘 critical

   
📧 email

   
🔒 file encryption

   
📁 file storage

   
🦊 Firefox

Firefox & forks, about:config etc.

  
💻 hardware

   
🌐 hosting

   
🏠 housekeeping

Anything primarily related to site cleanup.

  
🔐 password managers

   
🧰 productivity tools

   
🔎 research required

   
🌐 Social News Aggregators

   
🆕 software suggestion

   
👥 team chat

   
🔒 VPN

Virtual Private Network

  
🌐 website issue

*Technical* issues with the website.

  
🚫 Windows

   
👁️ browsers

   
🖊️ digital notebooks

   
🗄️ DNS

Domain Name System

  
🗨️ instant messaging (im)

   
🇦🇶 translations

Anything covering a translated version of the site

No Label
🔍🤖 Search Engines
approved
dependencies
duplicate
feedback wanted
high priority
I2P
iOS
low priority
OS
Self-contained networks
Social media
stale
streaming
todo
Tor
WIP
wontfix
XMPP
[m]
₿ cryptocurrency
ℹ️ help wanted
↔️ file sharing
⚙️ web extensions
enhancement
software removal
💬 discussion
🤖 Android
🐛 bug
💢 conflicting
📝 correction
🆘 critical
📧 email
🔒 file encryption
📁 file storage
🦊 Firefox
💻 hardware
🌐 hosting
🏠 housekeeping
🔐 password managers
🧰 productivity tools
🔎 research required
🌐 Social News Aggregators
🆕 software suggestion
👥 team chat
🔒 VPN
🌐 website issue
🚫 Windows
👁️ browsers
🖊️ digital notebooks
🗄️ DNS
🗨️ instant messaging (im)
🇦🇶 translations
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: privacyguides/privacytools.io#1055
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?