OpenDNS safer or not?

OpenDNS safer or not?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
OpenDNS safer or not? peter 06-19-2007
Posted by peter on June 19, 2007, 4:09 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Is it safer to use OpenDNS as the default DNS, or is it better to use the
one from my ISP?

Supposedly, OpenDNS has some built-in safety. However, if OpenDNS ever gets
hacked, wouldn't it become the world's greatest phising scheme?

The same applies to any DNS server of course, but my ISP's DNS server is a
less attractive target for hackers.



Posted by Sebastian G. on June 19, 2007, 6:33 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
peter wrote:

> Is it safer to use OpenDNS as the default DNS, or is it better to use the
> one from my ISP?


Both are bad, but you ISP's DNS is the lesser evil.

> Supposedly, OpenDNS has some built-in safety.


Yes, supposedly. As in

> However, if OpenDNS ever gets
> hacked, wouldn't it become the world's greatest phising scheme?


Maybe. But doesn't someone who's using OpenDNS explicitly want to be phished?

> The same applies to any DNS server of course, but my ISP's DNS server is a
> less attractive target for hackers.

And what about your government, your state police and a lot of
censorship-interested companies? Most likely your ISP is blocking
rotten.com, stromfront.org and allofmp3.com as well.

Posted by Neil W Rickert on June 19, 2007, 6:41 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

>Is it safer to use OpenDNS as the default DNS, or is it better to use the
>one from my ISP?

Safest is to run your own caching DNS server.


Posted by Sebastian G. on June 19, 2007, 7:23 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Neil W Rickert wrote:

>
>> Is it safer to use OpenDNS as the default DNS, or is it better to use the
>> one from my ISP?
>
> Safest is to run your own caching DNS server.

With ORSN as root zone and as primary cache for the gTLDs.

Posted by davidu on June 22, 2007, 12:06 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Neil W Rickert wrote:
>
> >> Is it safer to use OpenDNS as the default DNS, or is it better to use the
> >> one from my ISP?
>
> > Safest is to run your own caching DNS server.
>
> With ORSN as root zone and as primary cache for the gTLDs.

Why on earth would you think that's "safer?"

We're giving more control and insight into the DNS than anyone ever
has. OpenDNS has done more to secure the DNS in less than a year than
the old guard of the Internet has in the last 20 years. DNSSEC where
is it? Blocking of botnets, phishing sites, etc at the resolver, at
the edge of the network where it has the most directed impact without
wide-spread repercussions? ORSN is the last thing on earth to be
using. They are a political hedged bet, nothing to do with security
or "safer."

-davidu (from OpenDNS, obviously)


Similar ThreadsPosted
Re: OT: TRUTH: MACS ARE SAFER THANS WINDOWS May 30, 2007, 5:51 pm

The site map in XML format XML site map

Contact Us | Privacy Policy