It’s kind of common for me to change DNS servers frequently, so I created a light page which list all the DNS servers that I know of that does not log DNS requests.
Link: https://secu.pages.dev/
I wanted to post it here for people who are like me and needed a project like this.
What about quad9? Do they log queries?
“anonymized” according to https://www.privacyguides.org/en/dns/
Interesting, thanks
Now that’s a website
A motherfucking website
For the uninitiated: https://motherfuckingwebsite.com
What about the IPv4 versions? I use Mullvad and ControlD on my router that only accepts IPv4 for DNS configuration.
Bookmarked. Thanks
There’s plenty to add from OpenNIC and you get access to some addition TLDs as a bonus ;)
Actually supporting more TLDs is a security risk, so I cannot add them.
I will not add it for now, but I might think about it later.
Thank you for your suggestion.
How?
Malware distributors buy very cheap domains with uncommon TLDs and then use it.
I don’t understand how that would be a security risk to you. Even if I understood what the threat vector was, it would be very inefficient to use an OpenNIC tld to spread malware as you only target 0.0001% (random very low number) of internet users.
Here is a article talking about malware operators forcing OpenNIC to drop one of their TLDs back in 2019:
https://www.zdnet.com/article/opennic-drops-support-for-bit-domain-names-after-rampant-malware-abuse
Here is a article from sophos talking about malware using OpenNIC in 2021:
https://news.sophos.com/en-us/2021/04/15/bazarloader/
Here is a article that talk about recent(2023) attack that use OpenNIC:
https://thehackernews.com/2024/05/researchers-warn-of-catddos-botnet-and.html?m=1
As you can see, malware can target me and you based on OpenNIC.
From what I read these articles talk about post infection use of OpenNIC tlds. Anyway it was just a suggestion, it’s always a good idea to only use DNS servers you trust :)
Wow, thank you! I didn’t know many of those!
Controversial question probably but what is with one.one.one.one (Cloudflare).
They log queries:
https://developers.cloudflare.com/1.1.1.1/privacy/public-dns-resolver
Those terms seem very reasonable.
We should make a server that has a database of all these numbers and let’s you do lookup queries in real time. And we could make that process part of the protocol stack that every device uses.
I think you just invented DNS DNS, or Meta-DNS, MDNS? 🤣
For a website hosted at Cloudflare I was expecting to see it there 😂
