DoH
serverless-dns
Our great sponsors
DoH | serverless-dns | |
---|---|---|
18 | 56 | |
52 | 1,727 | |
- | 3.7% | |
1.2 | 7.9 | |
about 1 year ago | 2 months ago | |
PHP | JavaScript | |
MIT License | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
DoH
-
Encrypted DNS, what's the point?
Even those who weren't interested in self-hosting might spend a couple of minutes hosting their own DNS proxy since it's much more flexible and don't require root or dedicated port (at least with DoH).
- I have a feeling 1.1.1.1 + WARP isn't gonna last long
-
AdGuard Home and dealing with DoH
To inject a little paranoia, DoH spec and implementation don't actually require the providers to only use /dns-query, it's possible (and very simple) to create an innocuous-looking website with /supersecretdns serving DoH, or directly on the homepage itself (the request for DoH vs regular webpage has different header), but if your kids are already that proficient, no way to stop them aside from plugging off the router.
-
Preparing for when NextDNS gets blocked
Get a PHP hosting (dime a dozen these days), and proxying on PHP is also seamless, pretty much any website can have a secret URL that serves DoH.
-
Tiny script for DoH proxy
https://github.com/NotMikeDEV/DoH/blob/master/dns.php handles both POST & GET. Yours only work with the POST, used by Chrome & Firefox, but not AdGuard.
-
Is there any issue with playing DoH DNS roulette?
If you are paranoid about a particular DNS server knowing your requests (but not paranoid enough to just use Tor entirely), the alternative will be just running a recursive resolver where you're running that PHP file. This exposes your server IP to the nameserver, but that's it, no extra third parties are involved. Or take it to the next level by running Tor there and forwarding plain DNS requests through it.
-
Anyone know of a free service I can host a custom dns on
DoH can be somewhat protected with a secret path, you can even create one for free on Cloudflare Worker or any PHP hosting, but only Windows 11, iOS, macOS, and browsers support it natively. DoT is supported by Android natively but hiding the custom domain is more complex (you'll need wildcard cert, which requires manual record update with LetsEncrypt every 90 days), and if someone snoops on your traffic since they can see the domain for the DoT.
- Dirt simple PHP script to run DNS over HTTPS (DoH) on almost any hosting
- Is there any DoH add-on for WordPress?
-
My ISP starts hijacking dns servers so unbound stopped working
That relies on a list of known DoH providers. Private DoH server won't be in the list, which can be very easily made on any PHP hosting or even just a Cloudflare Worker.
serverless-dns
-
Thoughts on RethinkDNS. Firewall, Privacy, Ads, all-in-one app for privacy.
sky is a stub resolver, which after stripping out all request information, forwards the dns query to both Cloudflare and Google DoH servers (code), and replies from which ever responds back the fastest. Both the client app and the resolver (server) are open source, so if you find any leaks and know what's up, we're open to changes.
-
Using Cloudflare Gateway as an alternative to Pi-hole to block ads, trackers and other bad domains
There is also https://github.com/serverless-dns/serverless-dns that works on user-configurable list combinations using Cloudflare Workers (100k queries per day), though it can't be integrated with WARP.
-
Logs? Max or Sky?
Max (fly.io) and Sky (cloudflare) are both are no logs. You can examine the code to ascertain this (here) and also check the version of the code we've deployed too (via github actions).
-
Any future plans of adding an ad-blocking DNS server?
You can selfhost your own adblocking server on Cloudflare Workers and edit the upstream, you get Quad9 malware filtering, Cloudflare's nearest servers, and whatever blocking list you want.
-
RethinkDNS
Took us wayyy longer than originally planned, because not only personal life got in the way, we also run our own resolver (open source) maintaining which took away some of our time too. Especially, as the costs were mounting, we couldn't ignore it and had to optimize it as much as we could (which we since have).
-
Encrypted DNS, what's the point?
Even those who weren't interested in self-hosting might spend a couple of minutes hosting their own DNS proxy since it's much more flexible and don't require root or dedicated port (at least with DoH).
-
Meet the triumvirate: rec, sec, and pec
I swear this idea wasn't generated over chats and coffee with GPT3; though, most of the code for this feature was most certainly written by it (commit). Be careful with your reviews of this feature then; you don't want to upset a sentient Optimus Prime AI.
-
NextDNS vs Control D as compared by Control D owner
If you are deploying your own rdns, then logs and analytics are up and running (check the github readme). NRDs and other things will happen as we near launch (in a month or two, perhaps). But we are just 2 developers, and our time is really all spent on the Android app, and not the service...
-
Cloudflare like DNS - Self-hosted or with more privacy
Maybe, this is what you want? https://github.com/serverless-dns/serverless-dns
- Jack Dorsey -Twitter founder- is working on a 1M grant to The Calyx Institute
What are some alternatives?
Unbound - Unbound is a validating, recursive, and caching DNS resolver.
rethink-app - DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.
docker-cloudflared - Cloudflared proxy-dns Docker image
Netguard - A simple way to block access to the internet per app
encrypted-dns - DNS over HTTPS config profiles for iOS & macOS
Nebulo - Mirror of https://git.frostnerd.com/PublicAndroidApps/smokescreen. Feel free to contribute here as well.
bebasdns - Membantumu berselancar dengan aman dan tidak terbatas!.
dnscrypt-proxy - dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
dnsproxy - Simple DNS proxy with DoH, DoT, DoQ and DNSCrypt support
tracker-control-android - TrackerControl Android: monitor and control trackers and ads.
doh-cf-workers - DNS-over-HTTPS proxy on Cloudflare Workers
dns66 - DNS-based Host Blocker (and lightweight ad blocker) for Android