Open demarcush opened 4 months ago
Cisco DNS has become unusable at least in France and Portugal. The servers return fake responses to all queries.
The problem is that they still return valid certificates even in these countries.
This is very annoying. Not sure what to do with that.
Is that the case with the changes I made?
Yes. It's Cisco themselves returning poisoned responses.
Funny. What's the plan? Further investigation, letting them know the problem, remove their entries or just simply waiting it out?
Also, I can't thank you enough if you could merge the cloudflare/google and quad9 PRs.
This is intentional.
$ dig google.com @208.67.220.220
;; ADDITIONAL SECTION:
google.com. 0 IN TXT "Due to a court order in France issued under Article L.333-10 of the French Sport code the OpenDNS service is not currently available to users in France and certain French territories."
There may be other reasons, since EU and unwanted data collection don't play well together.
Politics
Turns out it wasn't about unwanted data collection at all, just another step towards war on piracy from EU.
Might need an update to default configuration file (
fragments_blocked
), as sandbox resolvers are not listed there.