You are not logged in.
- Topics: Active | Unanswered
#1 2011-03-27 15:07:27
- pogeymanz
- Member
- Registered: 2008-03-11
- Posts: 1,020
Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Let's say I have this friend who is moderately paranoid. He uses Firefox as his web browser, with NoScript, Adblock (with privacy filters), disabled flash local storage (includes flash cookies), and deletes cookies when the browser closes.
He wont use Google Chrome (though, would find Chromium slightly more acceptable). He uses Scroogle to search the web so that Google doesn't collect his data. Stuff like that.
So, which should a tinfoil hat guy be more paranoid of: OpenDNS, GoogleDNS or one's ISP for DNS servers? I'm guessing that the ISP is probably less "safe" as it is more directly tied to the customer of the service.
Does anybody do this besides me- I mean, my friend?
Offline
#2 2011-03-27 15:26:23
- theringmaster
- Member
- From: Air Force
- Registered: 2007-07-16
- Posts: 581
- Website
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
I would use opendns if I were him. I've been using them for years with no problems or downtime.
Check me out on twitter!!! twitter.com/The_Ringmaster
Offline
#3 2011-03-27 15:27:04
- PIMPinator
- Member
- From: Queensland, Australia
- Registered: 2010-03-14
- Posts: 85
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Firefox has a private browsing mode which doesn't store search history, browsing history, cookies etc. built in.
Why not just use TOR for your browsing if you're- I mean your friend is that paranoid? In fact, why the need to BE so paranoid? What is being done that needs to be hidden?
Last edited by PIMPinator (2011-03-27 15:38:57)
Offline
#4 2011-03-27 16:24:35
- ngoonee
- Forum Fellow
- From: Between Thailand and Singapore
- Registered: 2009-03-17
- Posts: 7,356
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
What is being done that needs to be hidden?
If he told you he'd have to kill you afterwards 
. It may (or may not) be in violation of forum rules as well.
Allan-Volunteer on the (topic being discussed) mailn lists. You never get the people who matters attention on the forums.
jasonwryan-Installing Arch is a measure of your literacy. Maintaining Arch is a measure of your diligence. Contributing to Arch is a measure of your competence.
Griemak-Bleeding edge, not bleeding flat. Edge denotes falls will occur from time to time. Bring your own parachute.
Offline
#5 2011-03-27 16:56:58
- rickdg
- Member
- From: The Lowlands
- Registered: 2011-01-01
- Posts: 24
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
I'd go for either OpenDNS or my own ISP's DNS depending on the quality of the latter. I have no problem using my ISP's DNS servers, but it's is well known for its decent privacy protection and is an outspoken defender of open internet here in the Netherlands. Then again, if you live in a place with heavy monitoring/censoring, you might want to avoid your ISP's DNS altogether.
My second choice would be OpenDNS, because they have fewer interest in monitoring/censoring your traffic than Google does. They don't have their own advertising network I've never heard of them censoring anything. (please correct me if I'm wrong)
Slightly off-topic: The question is not why you want to hide, but why they need to see
Last edited by rickdg (2011-03-27 16:58:26)
Offline
#6 2011-03-27 17:01:14
- bangkok_manouel
- Member
- From: indicates a starting point
- Registered: 2005-02-07
- Posts: 1,556
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
i'd use unbound with DNSSEC
Offline
#7 2011-03-27 18:04:25
- pogeymanz
- Member
- Registered: 2008-03-11
- Posts: 1,020
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Slightly off-topic: The question is not why you want to hide, but why they need to see
This is exactly the reason. I never asked to be stalked, so why should they get to?
Paranoia is only a small part of it. Some day in the near future, I fear that if I google the word "bomb" too many times I may have the FBI show up at my door.
It sounds like OpenDNS for me from now on.
Offline
#8 2011-03-27 19:01:01
- kaarek
- Member
- From: bouvet island
- Registered: 2010-04-22
- Posts: 12
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
>He wont use Google Chrome
let your friend write about:config in firefucks
then search for : browser.safebrowsing and geo.enabled
oops looks like "evil" g00gle owns firefucks too 
Offline
#9 2011-03-27 19:15:44
- pogeymanz
- Member
- Registered: 2008-03-11
- Posts: 1,020
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
>He wont use Google Chrome
let your friend write about:config in firefucks
then search for : browser.safebrowsing and geo.enabled
oops looks like "evil" g00gle owns firefucks too
My friend disabled that junk a long time ago. At least it CAN be disabled...
Offline
#10 2011-03-27 19:17:58
- milomouse
- Member
- Registered: 2009-03-24
- Posts: 940
- Website
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Most builds disable that by default, though I don't know what repo builds with. I'd build without them if I absolutely had to use firefox, though, sans the sarcasm. Also remove flashplayer if using 64bit, maybe use mplayer instead. Firefox has an extension for that if I'm not mistaken (to use an external player for flash). Here's an older list of security stuff I used for firefox (though I don't use it anymore due to many reasons) https://addons.mozilla.org/en-US/firefo … 0b-7d6a37/ I'd use requestpolicy if nothing else. Anyway, sorry for the static, just had to reply if only due to earlier comment. Topic has me curious about `unbound' though, thanks bangkok_manouel.
Last edited by milomouse (2011-03-27 19:19:23)
Offline
#11 2011-03-27 22:56:52
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,224
- Website
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Let's say I have this friend who is moderately paranoid.
Yes, a friend...........
So, which should a tinfoil hat guy be more paranoid of: OpenDNS, GoogleDNS or one's ISP for DNS servers? I'm guessing that the ISP is probably less "safe" as it is more directly tied to the customer of the service.
I'd call the ISP as probably the most "private", depending on who the ISP is. OpenDNS redirect invalid queries to their servers to perform a search -- cute, useful or mildly annoying in your web browser depending on your view, but it's a ****ing right royal pain the arse when you're trying to debug something at the command line, or any other application that isn't a web browser.
If your friend is really that paranoid, he should run his own DNS that goes direct to the root and saves no logs etc.
EDIT: Spelling fail.
Last edited by fukawi2 (2011-03-27 22:57:22)
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline
#12 2011-03-27 23:23:44
- jaco
- Member
- From: Toulouse, France
- Registered: 2011-03-17
- Posts: 149
Re: Tinfoil hat question about OpenDNS vs. GoogleDNS vs. My ISP's DNS
Agree with fukawi2 : I would use my ISP's DNS and surely not OpenDNS... Read this : http://www.bortzmeyer.org/opendns-non-merci.html (it's in french, sorry, but there are links to slashdot threads...)
Last edited by jaco (2011-03-27 23:28:06)
Offline