F5F Stay Refreshed Software General Software What is the proper configuration for safety when dealing with DNS leaks?

What is the proper configuration for safety when dealing with DNS leaks?

What is the proper configuration for safety when dealing with DNS leaks?

L
LuckySoda
Member
Find
161
12-04-2023, 07:07 PM
#1
I performed a DNS Leak test here
www.dnsleaktest.com
In one of the tests it displays my Internet Provider.
Then I enabled "max protection" DNS in Firefox settings, and the DNS test indicates "Cloudflare" as ISP.
Which setting is more secure?
Reply
Reply
L
LuckySoda
12-04-2023, 07:07 PM #1

I performed a DNS Leak test here
www.dnsleaktest.com
In one of the tests it displays my Internet Provider.
Then I enabled "max protection" DNS in Firefox settings, and the DNS test indicates "Cloudflare" as ISP.
Which setting is more secure?

Reply
Reply
A
ardvark090
Member
Find
57
12-04-2023, 10:13 PM
#2
Neither.
Many of these platforms function mainly as advertising hubs for VPN services.
The idea of a "leak" seems absurd. It merely identifies the DNS server you're connected to.
It doesn’t actually expose anything.
Probably, if you were engaging in illicit activities, you wouldn’t rely on a DNS service located in a jurisdiction where authorities could compel them to reveal your browsing habits.
If you configure your DNS through a hacker site, you’d avoid queries being sent to your ISP or search engines like Google.
Still, the optimal choice remains adjusting the DNS settings within your network configuration.
Enable encrypted DNS and opt for services such as 1.1.1.1 or 8.8.8.8—Cloudflare or Google among them.
Other providers now offer encrypted DNS options.
DNS itself isn’t highly sensitive, but it does shield you from certain hackers who might intercept your data.
Of course, this doesn’t eliminate the problem of data collection by DNS providers after encryption is removed; their tracking methods remain problematic.
Google and Cloudflare are frequently cited as major data sellers.
DNS plays only a minor role compared to the cookies they employ for tracking purposes.
Reply
Reply
A
ardvark090
12-04-2023, 10:13 PM #2

Neither.
Many of these platforms function mainly as advertising hubs for VPN services.
The idea of a "leak" seems absurd. It merely identifies the DNS server you're connected to.
It doesn’t actually expose anything.
Probably, if you were engaging in illicit activities, you wouldn’t rely on a DNS service located in a jurisdiction where authorities could compel them to reveal your browsing habits.
If you configure your DNS through a hacker site, you’d avoid queries being sent to your ISP or search engines like Google.
Still, the optimal choice remains adjusting the DNS settings within your network configuration.
Enable encrypted DNS and opt for services such as 1.1.1.1 or 8.8.8.8—Cloudflare or Google among them.
Other providers now offer encrypted DNS options.
DNS itself isn’t highly sensitive, but it does shield you from certain hackers who might intercept your data.
Of course, this doesn’t eliminate the problem of data collection by DNS providers after encryption is removed; their tracking methods remain problematic.
Google and Cloudflare are frequently cited as major data sellers.
DNS plays only a minor role compared to the cookies they employ for tracking purposes.

Reply
Reply
I
impiiii
Member
Find
135
12-04-2023, 10:59 PM
#3
Where precisely should I place 1.1.1.1 or 8.8.8.8?
Reply
Reply
I
impiiii
12-04-2023, 10:59 PM #3

Where precisely should I place 1.1.1.1 or 8.8.8.8?

Reply
Reply
C
coreylemonade
Member
Find
217
12-06-2023, 08:36 AM
#4
It would be better if Microsoft didn't keep interfering here. There are now several options where you can adjust it, which I believe all affect the same values. The area I've used to modify was in the properties under the nic settings. You're looking for IPv4 configurations. There should be a box at the bottom that lets you alter the DNS and select an encryption option. While making changes, turn off IPv6—it usually causes problems and offers minimal advantage.
Reply
Reply
C
coreylemonade
12-06-2023, 08:36 AM #4

It would be better if Microsoft didn't keep interfering here. There are now several options where you can adjust it, which I believe all affect the same values. The area I've used to modify was in the properties under the nic settings. You're looking for IPv4 configurations. There should be a box at the bottom that lets you alter the DNS and select an encryption option. While making changes, turn off IPv6—it usually causes problems and offers minimal advantage.

Reply
Reply
S
Supercute909
Member
Find
71
12-06-2023, 09:54 AM
#5
This is the resource you're referring to.
Reply
Reply
S
Supercute909
12-06-2023, 09:54 AM #5

This is the resource you're referring to.

Reply
Reply
_
_Match
Junior Member
Find
5
12-06-2023, 10:04 PM
#6
Mostly, the issue stems from updates in 2021. It’s essentially the same, just slightly different. The reason Microsoft altered this is unclear, but it seems they’re making minor adjustments to render previous videos and websites outdated. You only need to adjust the DNS settings; you can keep the IP address automatic. There’s a new option that enables encrypted DNS. Recently, Microsoft has been pushing changes, often citing improvements, though it’s hard to say if this is genuine or just a rebranding effort. Perhaps if they reduced their workforce further, they’d have more time to focus on such matters.
Reply
Reply
_
_Match
12-06-2023, 10:04 PM #6

Mostly, the issue stems from updates in 2021. It’s essentially the same, just slightly different. The reason Microsoft altered this is unclear, but it seems they’re making minor adjustments to render previous videos and websites outdated. You only need to adjust the DNS settings; you can keep the IP address automatic. There’s a new option that enables encrypted DNS. Recently, Microsoft has been pushing changes, often citing improvements, though it’s hard to say if this is genuine or just a rebranding effort. Perhaps if they reduced their workforce further, they’d have more time to focus on such matters.

Reply
Reply