255 lines
12 KiB
HTML
255 lines
12 KiB
HTML
<h1 id="dns" class="anchor"><a href="#dns"><i class="fas fa-link anchor-icon"></i></a> Domain Name System (DNS)</h1>
|
|
|
|
{% include cardv2.html
|
|
title="OpenNIC - Service"
|
|
image="/assets/img/tools/OpenNIC.png"
|
|
description="OpenNIC is an alternate network information center/alternative DNS root which lists itself as an alternative to ICANN and its registries. Like all alternative root DNS systems, OpenNIC-hosted domains are unreachable to the vast majority of the Internet."
|
|
website="https://www.opennic.org/"
|
|
forum="https://forum.privacytools.io/t/discussion-opennic/338"
|
|
github="https://github.com/OpenNIC"
|
|
%}
|
|
|
|
{% include cardv2.html
|
|
title="Njalla - Domain Registration"
|
|
image="/assets/img/provider/Njalla.png"
|
|
description="Njalla only needs your email or jabber address in order to register a domain name for you. Created by people from The Pirate Bay and IPredator VPN. Accepted Payments: Bitcoin, Litecoin, Monero, DASH, Bitcoin Cash and PayPal. A privacy-aware domain registration service."
|
|
website="https://njal.la/"
|
|
tor="http://njalladnspotetti.onion"
|
|
forum="https://forum.privacytools.io/t/discussion-njalla/339"
|
|
%}
|
|
|
|
{% include cardv2.html
|
|
title="DNSCrypt - Tool"
|
|
image="/assets/img/tools/DNSCrypt.png"
|
|
description="A protocol for securing communications between a client and a DNS resolver. The DNSCrypt protocol uses high-speed high-security elliptic-curve cryptography and is very similar to DNSCurve, but focuses on securing communications between a client and its first-level resolver."
|
|
website="https://dnscrypt.info/"
|
|
forum="https://forum.privacytools.io/t/discussion-dnscrypt/340"
|
|
github="https://github.com/jedisct1/dnscrypt-proxy"
|
|
%}
|
|
|
|
<h3>Worth Mentioning</h3>
|
|
|
|
<ul>
|
|
<li><a href="https://gitlab.com/quidsup/notrack">NoTrack</a> - A network-wide DNS server which blocks Tracking sites. Currently works in Debian and Ubuntu.</li>
|
|
<li><a href="https://namecoin.info/">Namecoin</a> - A decentralized DNS open source information registration and transfer system based on the Bitcoin cryptocurrency.</li>
|
|
<li><a href="https://pi-hole.net/">Pi-hole</a> - A network-wide DNS server for the Raspberry Pi. Blocks advertising and tracking domains for all devices on your network.</li>
|
|
</ul>
|
|
|
|
<h1 id="icanndns" class="anchor"><a href="#icanndns"><i class="fas fa-link anchor-icon"></i></a> Encrypted ICANN DNS Providers</h1>
|
|
|
|
<div class="alert alert-warning" role="alert">
|
|
<strong>Note: Using an encrypted DNS provider will not make you anonymous. But it will give you a better privacy. Don't rely on a "no log" policy.</strong>
|
|
</div>
|
|
|
|
<div class="table-responsive">
|
|
<table class="table sortable-theme-bootstrap" data-sortable>
|
|
<thead>
|
|
<tr>
|
|
<th data-sorted="true" data-sorted-direction="descending">ICANN DNS Provider</th>
|
|
<th data-sortable="true">Server Locations</th>
|
|
<th data-sortable="false">Privacy Policy</th>
|
|
<th data-sortable="true">Type</th>
|
|
<th data-sortable="true">Logging</th>
|
|
<th data-sortable="true">Protocols</th>
|
|
<th data-sortable="true">DNSSEC</th>
|
|
<th data-sortable="true">QNAME Minimization</th>
|
|
<th data-sortable="true">Filtering</th>
|
|
<th data-sortable="true">Source Code</th>
|
|
</tr>
|
|
</thead>
|
|
<tbody>
|
|
<tr>
|
|
<td data-value="AdGuard">
|
|
<a href="https://adguard.com/en/adguard-dns/overview.html">AdGuard</a> <span class="badge badge-warning" data-toggle="tooltip" title="Uses Cloudflare"><i class="fas fa-exclamation-triangle"></i></a></span>
|
|
</td>
|
|
<td>Anycast (based in <span class="flag-icon flag-icon-cy"></span> Cyprus)</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://adguard.com/en/privacy/dns.html" href="https://adguard.com/en/privacy/dns.html">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Commercial</td>
|
|
<td>N</td>
|
|
<td>IPv4, IPv6, DoH, DoT, DNSCrypt</td>
|
|
<td>N</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/AdguardTeam/AdGuardDNS/" href="https://github.com/AdguardTeam/AdGuardDNS/">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="BlahDNS">
|
|
<a href="https://blahdns.com/">BlahDNS</a> <span class="badge badge-warning" data-toggle="tooltip" title="Uses Cloudflare"><i class="fas fa-exclamation-triangle"></i></a></span>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-ch"></span> Switzerland, <span class="flag-icon flag-icon-jp"></span> Japan, <span class="flag-icon flag-icon-de"></span> Germany</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title='"No logs."'>
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Hobby Project</td>
|
|
<td>N</td>
|
|
<td>DoH, DoT, DNScrypt</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/ookangzheng/blahdns/" href="https://github.com/ookangzheng/blahdns/">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="CZ.NIC">
|
|
<a href="https://www.nic.cz/odvr/">CZ.NIC</a>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-cz"></span> Czech Republic</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title='"CZ.NIC resolvers neither collect any personal data nor gather information on pages where your computer sends personal data."'>
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td data-value="0"><a data-toggle="tooltip" data-placement="bottom" data-original-title='"CZ.NIC is an interest association of legal entities, founded in 1998 by leading providers of Internet services."' href="https://www.nic.cz/page/351/about-association/">Association</a></td>
|
|
<td>N</td>
|
|
<td>IPv4, IPv6, DoH, DoT</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>N/A</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="dnswarden">
|
|
<a href="https://github.com/bhanupratapys/dnswarden/blob/master/README.md">dnswarden</a>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-de"></span> Germany</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/bhanupratapys/dnswarden/blob/master/README.md#privacy-policy-and-tc" href="https://github.com/bhanupratapys/dnswarden/blob/master/README.md#privacy-policy-and-tc">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Hobby Project</td>
|
|
<td>N</td>
|
|
<td>IPv4, IPv6, DoH, DoT, DNSCrypt</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>Based on server choice</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="Foundation for Applied Privacy">
|
|
<a href="https://appliedprivacy.net/services/dns/">Foundation for Applied Privacy</a>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-at"></span> Austria</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://appliedprivacy.net/privacy-policy" href="https://appliedprivacy.net/privacy-policy">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Non-Profit</td>
|
|
<td><a href="https://appliedprivacy.net/privacy-policy/">Some</a></td>
|
|
<td>DoH, DoT, DNS-over-Onion (experimental)</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>N</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="PowerDNS">
|
|
<a href="https://powerdns.org/">PowerDNS</a>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-nl"></span> The Netherlands</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://powerdns.org/doh/privacy.html" href="https://powerdns.org/doh/privacy.html">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Hobby Project</td>
|
|
<td>N</td>
|
|
<td>DoH</td>
|
|
<td>Y</td>
|
|
<td>N</td>
|
|
<td>N</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://github.com/PowerDNS/pdns" href="https://github.com/PowerDNS/pdns">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="Quad9">
|
|
<a href="https://quad9.net/">Quad9</a> <span class="badge badge-warning" data-toggle="tooltip" title="Founders include the Global Cyber Alliance, comprised of the City of London Police and Manhattan District Attorney's Office"><i class="fas fa-exclamation-triangle"></i></a></span>
|
|
</td>
|
|
<td>Anycast (based in <span class="flag-icon flag-icon-us"></span> USA)</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://quad9.net/policy/" href="https://quad9.net/policy/">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Non-Profit</td>
|
|
<td><a href="https://quad9.net/policy/">Y</a></td>
|
|
<td>IPv4, IPv6, DoH, DoT, DNSCrypt</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>Based on server choice</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="SecureDNS">
|
|
<a href="https://securedns.eu/">SecureDNS</a>
|
|
</td>
|
|
<td><span class="flag-icon flag-icon-nl"></span> The Netherlands</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title="https://securedns.eu/#privacy" href="https://securedns.eu/#privacy">
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Hobby Project</td>
|
|
<td>N</td>
|
|
<td>DoH, DoT, DNScrypt</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>Y</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
|
|
<tr>
|
|
<td data-value="UncensoredDNS">
|
|
<a href="https://blog.uncensoreddns.org/">UncensoredDNS</a>
|
|
</td>
|
|
<td>Anycast (based in <span class="flag-icon flag-icon-dk"></span> Denmark)</td>
|
|
<td>
|
|
<a data-toggle="tooltip" data-placement="bottom" data-original-title='"Absolutely nothing is being logged, neither about the users nor the usage of this service. I do keep graphs of the total number of queries, but no personally identifiable information is saved. The data that is saved will never be sold or used for anything except capacity planning of the service."'>
|
|
<img alt="WWW" src="/assets/img/layout/www.png" width="35" height="35">
|
|
</a>
|
|
</td>
|
|
<td>Hobby Project</td>
|
|
<td>N</td>
|
|
<td>IPv4, IPv6, DoT</td>
|
|
<td>Y</td>
|
|
<td>N</td>
|
|
<td>N</td>
|
|
<td>N/A</td>
|
|
</tr>
|
|
</tbody>
|
|
</table>
|
|
|
|
<h3>Worth Mentioning</h3>
|
|
|
|
<ul>
|
|
<li><a href="https://www.isc.org/blogs/qname-minimization-and-privacy/">QNAME Minimization and Your Privacy</a> by the Internet Systems Consortium (ISC)</li>
|
|
<li><a href="https://www.isc.org/dnssec/">DNSSEC and BIND 9</a> by the ISC</li>
|
|
<li>Android 9 comes with a DoT client by <a href="https://android-developers.googleblog.com/2018/04/dns-over-tls-support-in-android-p.html">default</a>. <span class="badge badge-warning" data-toggle="tooltip" data-original-title="...but with some caveats"><a href="https://www.quad9.net/private-dns-quad9-android9/"><i class="fas fa-exclamation-triangle"></i></a></li>
|
|
<li><a href="https://apps.apple.com/app/id1452162351">DNSCloak</a> - An <a href="https://github.com/s-s/dnscloak">open-source</a> DNSCrypt and DNS over HTTPS client for iOS by <td data-value="0"><a data-toggle="tooltip" data-placement="bottom" data-original-title='"A charitable non-profit host organization for international Free Software projects."' href="https://techcultivation.org/">the Center for the Cultivation of Technology gemeinnuetzige GmbH</a>.</td>
|
|
|
|
</ul>
|
|
</div> |