Update Cisco's OpenDNS - Githubissues

DNSCrypt / dnscrypt-resolvers

Lists of public DNSCrypt / DoH DNS servers and DNS relays

https://dnscrypt.info

1.2k stars 260 forks source link

Update Cisco's OpenDNS #902

Open demarcush opened 4 months ago

demarcush commented 4 months ago

Might need an update to default configuration file (fragments_blocked), as sandbox resolvers are not listed there.

jedisct1 commented 3 months ago

Cisco DNS has become unusable at least in France and Portugal. The servers return fake responses to all queries.

The problem is that they still return valid certificates even in these countries.

This is very annoying. Not sure what to do with that.

demarcush commented 3 months ago

Is that the case with the changes I made?

jedisct1 commented 3 months ago

Yes. It's Cisco themselves returning poisoned responses.

demarcush commented 3 months ago

Funny. What's the plan? Further investigation, letting them know the problem, remove their entries or just simply waiting it out?

Also, I can't thank you enough if you could merge the cloudflare/google and quad9 PRs.

jedisct1 commented 3 months ago

This is intentional.

$ dig google.com @208.67.220.220
;; ADDITIONAL SECTION:
google.com.     0   IN  TXT "Due to a court order in France issued under Article L.333-10 of the French Sport code the OpenDNS service is not currently available to users in France and certain French territories."

There may be other reasons, since EU and unwanted data collection don't play well together.

demarcush commented 3 months ago

Politics

demarcush commented 2 months ago

Turns out it wasn't about unwanted data collection at all, just another step towards war on piracy from EU.