Revision [31495]

This is an old revision of DNSCrypt made by s243a on 2016-10-29 00:51:03.

 

DNSCrypt provides increased DNS Privacy and security by encrypting traffic between the user and a DNS resolver.

This could also provide robustness in the DNS system for the following reasons:
1. Encrypted Traffic is harder to spoof
2. The resolver can reduce the load on DNS servers by providing caching functionality.

DNCCrypt can also be used to get around domain name censorship. For instance if the country you are in is blocking the DNS address for a given domain name, you could in theory obtain the IP Address by using a DNS Server in the country where the content is being hosted. Of course for complete privacy one would need to tunnel traffic through either a VPN or Tor, since an IP packet contains the source and destination (See Wikipedia articles: IPv4 & IPv6) your ip traffic could be sniffed by intermediate servers.



Pet Download and Forum Thread


The most recent version of the DNSCrypt pet is available in the following thread:
http://murga-linux.com/puppy/viewtopic.php?t=101068

Notes

I. To what extent devices have deliberate backdoors is difficult to know but their are well, known cases (e.g. superfish)
II. In server side load balancing a server listens to a port for external clients and then forwards the request to a backend server which replies to the request. (Wikipedia: Loadbalancing_(Computing)#Server-Side_Load_Balancing 20 Oct 2016)
III. If more than one address is known for a site then Load balancing could be done on the client side. Typical though a DNS server returns one ip address for a given serve to each client.

References

1 - http://www.zdnet.com/article/the-dyn-report-what-we-know-so-far-about-the-worlds-biggest-ddos-attack/
2 - https://techcrunch.com/2016/10/21/many-sites-including-twitter-and-spotify-suffering-outage/


Categories
CategoryNetworking
CategoryDNS
There are no comments on this page.
Valid XHTML :: Valid CSS: :: Powered by WikkaWiki