Security and DNS: some questions and answers

Share with a friend










Send

On my blog, I have often spoken of Net Neutrality and DNS. With this article, a while to want a little because thanks to comments I have made a few questions, I would like to do a bit of clarity on the "Security" related to the famous DNS Server.

DNS Security PrivacyAs has been amply explained in This article, a DNS is nothing more than a "phonebook"that converts the web address of a site on which I want to surf a IP address. For most users, DNS lookups are handled automatically via your ISP, however you have the option, however, to use a third-party DNS resolver. Here is where OpenDNS and Google Public DNS come into play.

Questions and answers about Security in DNS

Q: I Change the DNS servers for my connection is secure?
A: Yes, there is no risk. Change the DNS resolver is easy and transparent to the ISP. It's a manageable parameter independently.

Q: I have multiple devices connected to my Internet. Changing DNS at some risk?
A: absolutely not, change DNS is easy and transparent to the ISP.

Q: If a DNS Server is wrong or not working what happens?
A: Probably you will not be able to navigate writing addresses as www.google.it. All connectivity services that translate hostnames into IP addresses will not work. Anyway do not worry to see if there is a problem with the DNS configuration just reset default or automatic acquisition and make further attempts after ascertaining the cause.

Q: what are the advantages of using alternative Server?
A: simply use a system like OpenDNS or Google is that it can be more fast, more efficient and more sure than the default ISP configurations.

Q: what does the security with DNS? How can a DNS protect myself from network threats?
A: a service such as OpenDNS or Google, following inquiries user reports and statistical data, can block or warn the user if a web site contains threats or dangers. I'm talking about phishing web sites, malware and other threats.

Q: my ISP I recommend using its DNS Server. Why?
A: Everyone pulls water to his mill. According to the ISP DNS servers themselves are faster than others. In part, and in some cases it is true. But they lack Net Neutrality (see Vodafone) and especially network security.

Q: How do we put the Privacy point of view?
A: it's a very difficult to treat because each DNS service applies different rules. Data are typically collected on requests and the origin of them. The goal is for the majority of cases, statistical service improvement and tracking will not occur for more than 48 hours (as Dad Google it). Obviously a DNS service is obligated by law to provide all data in its possession where organs such as theFBI, NSA and so on, aviino and/or investigations Act penalty level.

D: E’ preferibile cambiare DNS dal Router o basta farlo dal dispositivo che si utilizza?
R: E’ preferibile farlo dal Modem/Router, in quanto se non specificato sul dispositivo finale, l’impostazione verrà ereditata sul device attraverso il DHCP.


Share with a friend










Send
About the Author

Andrea

IT Security Specialist, PMO, Cisco Instructor - Amante del'Informatica e della Pesca Sportiva. Scrivo di IT per evangelizzare e fare informazione. Mi occupo principalmente di Networking e di Sicurezza informatica con attività di Red Team. Mi sforzo e cerco di contribuire per avere un Internet libero e sicuro.

2 Comments

Lascia un commento

Il tuo indirizzo email non sarà pubblicato. Required fields are marked *