DNS queries and their anonymity

[DronVR]

DNS queries and their anonymity

I think any of you understands the need to disguise yourself on the network. Enabled VPN - good, but still DNS merges. Roughly speaking - do not care for vpn, your dns can still track.

For those who don’t know DNS - this is a thing with which you can recognize IP by domain. Roughly speaking, it was created to make it easier for users to navigate. After all, it’s much easier to remember the google.com domain name than the set of numbers that are hidden under it. In fact, there are two nuances that spoil everything:

The connection is not encrypted. This means that someone can replace the IP just by intercepting your traffic. Almost all DNS servers in the world save logs and do not hide it. In accordance with the law, they must pass logs to uncles in uniform.

To hide the DNS query in front of the provider, you should do the following:

• Download program Simple DNSCrypt : https://simplednscrypt.org
• Install and run the software. In the window that opens, set all the parameters and select the connections that you want to encrypt.
• Open the tab " Resolvers "and set the automatic mode. If you are professional in this or you need some specific resolver, that is, the ability to choose manually.
• Voila, the level of security has increased slightly. We can go to whoer.net and see, as in the DNS line, the resolver address is displayed, not yours. The provider does not see anything, does not write logs, life is beautiful (not a fact).

A small remark, from my own experience I will say that for some reason this program likes to conflict with Nord VPN, so it’s better to test with another VPN.

I will clarify the topic, which helps us to remain in the shadows.

Let's start with Thor.

Tor
A Mozilla-based browser with a high level of anonymity. TOR has its own .onion domain, accessible only through it. Traffic in TOR goes through its own transit server chains.

Pros:

• Open source
• Strong encryption
• Custom .onion pseudo-domain

Minuses:

• Sometimes very high ping (delay)
• The ability to intercept traffic if the destination server does not support ssl or tls encryption.

SOCKS5 (Sock)
The network protocol makes it possible to send packets from the user to the server through a proxy server without a palette. Roughly speaking, the sock acts as an intermediary between you and the final server to which the request is sent. Quite simply - without a sock your IP address RU, with a sock your IP address and DNS address is displayed, for example, from USA Brighton Beach

Pros:

• Cheap

Minuses:

• It simply redirects traffic, not encrypts it.

VPN
The generic name of technologies that allow one or more network connections (logical network) over another network (for example, the Internet).

In short, we all know here that we are connecting to the VPN server and then working with the ip of this server itself. Connecting from us to the server under the cipher so that providers do not burn our movements on the network. FROM Doublevpn everything is a little more interesting. The provider can see the connection to the first server, and on the network we are scouring the IP of the second. Obviously, dubvpn is more effective.

Pros:

• Traffic cipher
• The more people using one server, the better.
• Doublevpn - double fucking.

Minuses:

• For someone it's not cheap.
• Some vpnschikov contrary to all records logistics.

SSH tunnel
In fact, the same sock, but it encrypts traffic, and this is a very important point. I explain with the example of all-seeing providers. Now they will not be able to track your adventures, as ssh encrypted traffic, that's all.

And by the way, ping is great.

Pros:

• Of course the cipher

Minuses:

• More expensive sock
• Slightly more problems with software than with a sock.

@Black Time