• Sonori@beehaw.org
    link
    fedilink
    arrow-up
    7
    ·
    1 year ago

    You could also just set your DNS to one of the many free DNSSEC providers. That’s even more secure because there are fewer middle men who can track you. After all, while your ISP may not be able to see that DNS traffic, if you arn’t using DNSSEC anyway then your VPN and their upstream provider can.

    Besides, nearly all tracking nowadays uses third party browser fingerprinting, which a VPN does nothing about. Practically, a VPN is far more security theater than actual security.

    Also, isn’t it funny that sending all your data though a second nation where it no longer legally counts as Amarican internet traffic became really well advertised right after a major scandal came out where the NSA was illegally monitoring American traffic, and more protections were put in place to keep them from doing it again?

    You don’t even need the VPN company to be in on it, a group like the NSA can pretty easily compromise a “no logs” VPN’s technical infrastructure or that of their upstream provider, and they’re even got people who feel like they have something to hide to self select for it to cut down on the amount of boring traffic in the first place.

    • StarkZarn@infosec.pub
      link
      fedilink
      English
      arrow-up
      7
      ·
      1 year ago

      This is absolutely not what DNSSEC is. DNSSEC provides authenticity of the response, not privacy. You’re describing a means of encrypted name resolution, like dns-over-tls, dns-over-https, etc.

      • Sonori@beehaw.org
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Right, I had just responded off the top of my head and got the name wrong. Point still stands.

        • StarkZarn@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Potentially, but precision is important, especially if you’re going to make sweeping claims about a topic, acting as an authority.