Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

If this is the case, someone running their own recursive DNS server (like Bind9 or Unbound) can trivially bypass these restrictions. Doing this is a sensible step towards more privacy, regardless of censorship.


They don’t need to run their own DNS server, just configure a DNS server other than the ISP-provided one, like Quad9 or Google.


Using Google - one of the largest data mining companies out there - rather than my trusted ISP doesn’t sound d like a step towards privacy


Maybe this is a good place to ask: what is the easiest way to use my own DNS entirely in user mode (not a server when I can't change which DNS is pointed to, since not an admin), a SOCKSv5 proxy?

It looks like this is possible with Chrome-based browsers using a command line flag (--host-resolver-rules) or in Firefox settings. Is there a better way?


If you are on Linux, install unbound and set your DNS server to localhost, done.


"private DNS". Configure your own (with ad blocking) on nextdns.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: