Thread replies: 18
Thread images: 3
Thread images: 3
File: opennic-logo-sm411.png (6KB, 300x125px) Image search:
[Google]
6KB, 300x125px
>error: our system thinks your post is spam. please reformat and try again.
onii dot chan and
infinite dot chan for chuckles
upload dot chan for file hosting
>>
>>51575496
my favourites: .chan .micro and .null
penis.micro ;)
>>
>>51575496
>not dnscrypt plus unbound (hardened) to enforce DNSSEC and act as a cache
>not using the no-logs dnscrypt servers that are compatible with DNSSEC
>not having fallback DNS servers in your resolv.conf like:domain home
nameserver 127.0.0.1
options edns0
# Fallback to OpenNIC
nameserver 31.14.133.188
nameserver 81.2.237.32
# Fallback to OpenDNS
nameserver 208.67.222.222
nameserver 208.67.220.220
nameserver 208.67.222.220
nameserver 208.67.220.222
# Fallback to Google as last resort
nameserver 8.8.8.8
nameserver 8.8.4.4
>>
>>51575533
actually i have a similar setup just without opendns
>>
>>51575645
I used to have that setup plus squid, but it's a lot of work to set them all up, so I chose not to include squid this time around.
>>
>>51575533
Why not fall back to your ISP's DNS instead of google's ?
>>
>>51575777
They are both crap, but it's mostly because I don't know what it is.
>>
OpenNIC is really good, more servers need to be supporting dnscrypt and propagation needs to become a bit better for their TLDs, but it's still the best DNS around.
.oss and .pirate need more love too.
>>
>>51576219
If OpenNIC had servers that supported DNSCrypt and DNSSEC, I would definitely use them.
>>
File: image_7.jpg (92KB, 600x600px) Image search:
[Google]
92KB, 600x600px
>>51576259
OpenNIC has dnscrypt support, it's just you need to find out which servers support it yourself.
Check out http://servers.opennicproject.org
>>
>>51576388
>OpenNIC has dnscrypt support, it's just you need to find out which servers support it yourself.
I am aware, but in case you didn't notice I listed TWO requirements connected by the logical operator AND, not OR.
>>
>>51576428
The request is a little redundant, since both protocols seem to just authenticate. DNSSEC, like any IETF standard, seems a little impractical for a non-ICANN DNS to implement here anyways.
>>
File: StripRouletterusse650finalenglish.jpg (335KB, 650x897px) Image search:
[Google]
335KB, 650x897px
>>51575777
Seems to be a "pick your botnet" choice. Neither is favorable.
>>
>>51578876
Yeah but your ISP already knows most of your behavior online while Google doesn't.
>>
>>51578938
Google can still guess a lot of your behaviour from what they sniff out on Google Analytics or from CDN served content. Unless you're blocking most Javascript, of course.
>>
>>51579656
Someone who'd bother setting up unbound and dnscrypt on his machine would be quite stupid not to use uMatrix/RequestPolicy as well.
>>
>>51575496
onii.chan
infinite.chan
upload.chan
Please, just type them correctly.
>>
>>51579802
i tried fucking everything
>spam
Thread posts: 18
Thread images: 3
Thread images: 3