|
OpenBSD Security Functionally paranoid! |
|
Thread Tools | Display Modes |
|
||||
DNSCrypt and local Unbound resolver
I am reading one of BSD now tutorials
http://www.bsdnow.tv/tutorials/openbsd-router As probably most of you my typical work/home DNS set up consists of local Unbound DNS resolver with DNSSEC validation turned on. However above tutorial advocates the use of dnscrypt-proxy. My understanding is that dnscrypt-proxy is useful in the case local resolver is forwarding requests to another resolver like OpenDNS (no U.S. resolver should be used IMHO if the privacy is of any concern). In my case my understanding is that each uncashed request will go to a top domain. Ideally one would be able to encrypt such traffic with DNSCurve but I am not aware that Matthew Dempsky finished that code and removed those explicit dependencies on Linux kernel system calls. My question is: Is dnscrypt-proxy at all useful for people who run their own Unbound resolver (for example on my laptop) and don't forward DNS request to any server? Could anybody please explain me how dnscrypt-proxy actually works (RTFM with the link is OK too). |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
directing DNS queries to local unbound? | 22decembre | OpenBSD Security | 16 | 28th December 2014 04:52 AM |
Unbound reverse-ptr stub-zone woes | cmacrae | OpenBSD General | 0 | 9th August 2014 05:57 PM |
dnscrypt-proxy build errors? | gkbsd | OpenBSD Packages and Ports | 7 | 3rd May 2014 01:12 PM |
unbound reverse lookup private zone | Oko | General software and network | 2 | 20th November 2013 03:15 PM |
Security DNSCrypt: a tool to encrypt all DNS traffic | J65nko | News | 0 | 8th December 2011 08:13 PM |