Quad9 DNS Malicious Domain Blocking Service
-
The Global Cyber Alliance, which is mostly law enforcement agencies, is working with IBM and Packet Clearing House to bring a free malicious site blocking DNS service to everyone called Quad9 after its IP address 9.9.9.9.
-
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
-
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
-
@scottalanmiller said in Quad9 DNS Malicious Domain Blocking Service:
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
I fully believe the DNS blocking bits of the service will work as advertised. Because the lists they aggregate from are coming form the 3rd party. It is the not tracking all my DNS queries that I do not believe.
I have zero problem accepting Strongarm.io for this, because they are a for profit company that will cease to be if they do something wrong.
-
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
@scottalanmiller said in Quad9 DNS Malicious Domain Blocking Service:
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
I fully believe the DNS blocking bits of the service will work as advertised. Because the lists they aggregate from are coming form the 3rd party. It is the not tracking all my DNS queries that I do not believe.
I have zero problem accepting Strongarm.io for this, because they are a for profit company that will cease to be if they
do something wrong.are caught doing something wrong.FTFY
-
@mlnews said in Quad9 DNS Malicious Domain Blocking Service:
The Global Cyber Alliance, which is mostly law enforcement agencies, is working with IBM and Packet Clearing House to bring a free malicious site blocking DNS service to everyone called Quad9 after its IP address 9.9.9.9.
I'm thinking about using this on my home network.
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
Not really sure what this matters, as none of us are doing anything illegal. So this has no bearing on my decision.
@scottalanmiller said in Quad9 DNS Malicious Domain Blocking Service:
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
However, this is what concerns me. It's not that I care about law enforcement, it's that I do not trust "law enforcement" for security decision making. How many times have law agencies and the like been hacked? Their primary function is not network security, so I'd rather leave that to someone who specializes in it and has a lot to loose if they screw up. Law enforcement does not.
-
So, back to my original thought... speaking strictly of security of what they say they're about, is Quad9 good? Is there a better free service to use?
-
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
-
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
-
I understand law enforcement not being network security experts, I'm not arguing that point.... just FYI.
-
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
I feel very strongly for right to privacy, the argument of legality of whatever a person does is irrelevant.
-
@stuartjordan said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
I feel very strongly for right to privacy, the argument of legality of whatever a person does is irrelevant.
Quad9 says they don't store IPs, personal data, etc...
Does Quad9 collect and store personal data?
Quad9 infrastructure does not store any personal data about its users. Please read our complete Data Policy here as there are exceptions for harmful attacks against our infrastructure.
Return to Top
How does Quad9 ensure my privacy?When an entity or an individual is using the Quad9 infrastructure, their IP address is not logged in our system. We, however, log the geo-location of the system (city, state, country) and use this information for malicious campaign and actor analysis, as well as a component of the data we provide our threat intelligence partners.
Return to Top
What does Quad9 log/store about the DNS queries?We store details of the DNS records queried, timestamp, and the city, state, and country from where the query came. We do not store source IP information of end user queries.
Return to Top
Does Quad9 share the DNS data that is generated with marketers?Quad9 does not and never will share any of its data with marketers, nor will it use this data for demographic analysis. Our purpose is fighting cyber crime on the Internet and to enable individuals and entities to be more secure. We do this by increasing visibility into the threat landscape by providing generic telemetry to our security industry partners who contribute data for threat blocking.
-
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@stuartjordan said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
I feel very strongly for right to privacy, the argument of legality of whatever a person does is irrelevant.
Quad9 says they don't store IPs, personal data, etc...
Does Quad9 collect and store personal data?
Quad9 infrastructure does not store any personal data about its users. Please read our complete Data Policy here as there are exceptions for harmful attacks against our infrastructure.
Return to Top
How does Quad9 ensure my privacy?When an entity or an individual is using the Quad9 infrastructure, their IP address is not logged in our system. We, however, log the geo-location of the system (city, state, country) and use this information for malicious campaign and actor analysis, as well as a component of the data we provide our threat intelligence partners.
Return to Top
What does Quad9 log/store about the DNS queries?We store details of the DNS records queried, timestamp, and the city, state, and country from where the query came. We do not store source IP information of end user queries.
Return to Top
Does Quad9 share the DNS data that is generated with marketers?Quad9 does not and never will share any of its data with marketers, nor will it use this data for demographic analysis. Our purpose is fighting cyber crime on the Internet and to enable individuals and entities to be more secure. We do this by increasing visibility into the threat landscape by providing generic telemetry to our security industry partners who contribute data for threat blocking.
Now let's see when we will trust that
-
@dbeato said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@stuartjordan said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
I feel very strongly for right to privacy, the argument of legality of whatever a person does is irrelevant.
Quad9 says they don't store IPs, personal data, etc...
Does Quad9 collect and store personal data?
Quad9 infrastructure does not store any personal data about its users. Please read our complete Data Policy here as there are exceptions for harmful attacks against our infrastructure.
Return to Top
How does Quad9 ensure my privacy?When an entity or an individual is using the Quad9 infrastructure, their IP address is not logged in our system. We, however, log the geo-location of the system (city, state, country) and use this information for malicious campaign and actor analysis, as well as a component of the data we provide our threat intelligence partners.
Return to Top
What does Quad9 log/store about the DNS queries?We store details of the DNS records queried, timestamp, and the city, state, and country from where the query came. We do not store source IP information of end user queries.
Return to Top
Does Quad9 share the DNS data that is generated with marketers?Quad9 does not and never will share any of its data with marketers, nor will it use this data for demographic analysis. Our purpose is fighting cyber crime on the Internet and to enable individuals and entities to be more secure. We do this by increasing visibility into the threat landscape by providing generic telemetry to our security industry partners who contribute data for threat blocking.
Now let's see when we will trust that
That's what I'm asking.
Make me not want to use it! Otherwise I will if there's nothing better.
-
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@stuartjordan said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@coliver said in Quad9 DNS Malicious Domain Blocking Service:
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
as none of us are doing anything illegal.
When has that ever mattered?
Do you care that you're being recorded when you walk into a bank? A grocery store? At street intersections? No. Why? Because you aren't doing anything illegal.
But you care about this, even though you have nothing to hide regarding your browsing habits?
Explain to me...
I feel very strongly for right to privacy, the argument of legality of whatever a person does is irrelevant.
Quad9 says they don't store IPs, personal data, etc...
Does Quad9 collect and store personal data?
Quad9 infrastructure does not store any personal data about its users. Please read our complete Data Policy here as there are exceptions for harmful attacks against our infrastructure.
Return to Top
How does Quad9 ensure my privacy?When an entity or an individual is using the Quad9 infrastructure, their IP address is not logged in our system. We, however, log the geo-location of the system (city, state, country) and use this information for malicious campaign and actor analysis, as well as a component of the data we provide our threat intelligence partners.
Return to Top
What does Quad9 log/store about the DNS queries?We store details of the DNS records queried, timestamp, and the city, state, and country from where the query came. We do not store source IP information of end user queries.
Return to Top
Does Quad9 share the DNS data that is generated with marketers?Quad9 does not and never will share any of its data with marketers, nor will it use this data for demographic analysis. Our purpose is fighting cyber crime on the Internet and to enable individuals and entities to be more secure. We do this by increasing visibility into the threat landscape by providing generic telemetry to our security industry partners who contribute data for threat blocking.
The NSA said they weren't spying on Americans.
No one here believes anything the government says. Just as @JaredBusch said, I trust a for profit company because if they are caught doing something wrong, they will pay for it.
-
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
@scottalanmiller said in Quad9 DNS Malicious Domain Blocking Service:
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
I fully believe the DNS blocking bits of the service will work as advertised. Because the lists they aggregate from are coming form the 3rd party. It is the not tracking all my DNS queries that I do not believe.
I have zero problem accepting Strongarm.io for this, because they are a for profit company that will cease to be if they do something wrong.
I've been using Strongarm. My internal DNS points to it and my Pi-hole points to the internal DNS. Then all of the clients point to the Pi-hole server.
Strongarm hasn't caught anything yet, but I'll be glad it's there when it does.
-
@stacksofplates said in Quad9 DNS Malicious Domain Blocking Service:
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
@scottalanmiller said in Quad9 DNS Malicious Domain Blocking Service:
@jaredbusch said in Quad9 DNS Malicious Domain Blocking Service:
While this is a great concept, I do not trust that this:
"Anyone anywhere can use it," said Phil Rettinger, GCA's president and chief operating officer, in an interview with Ars. The service, he says, will be "privacy sensitive," with no logging of the addresses making DNS requests—"we will keep only [rough] geolocation data," he said, for the purposes of tracking the spread of requests associated with particular malicious domains. "We're anonymizing the data, sacrificing on the side of privacy."
will remain true because of this:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime
Emphasis mine.
I agree. The very people we worry most about both from their tendency to act as criminals, and their general abject disconnect with common sense and security. Not a group of people I'd trust with security decision making.
I fully believe the DNS blocking bits of the service will work as advertised. Because the lists they aggregate from are coming form the 3rd party. It is the not tracking all my DNS queries that I do not believe.
I have zero problem accepting Strongarm.io for this, because they are a for profit company that will cease to be if they do something wrong.
I've been using Strongarm. My internal DNS points to it and my Pi-hole points to the internal DNS. Then all of the clients point to the Pi-hole server.
Strongarm hasn't caught anything yet, but I'll be glad it's there when it does.
Yeah, that is what I have right now.
-
This is declared as something built by law enforcement. We can be sure they are wording thing in their best interest.
For example all traffic flowing to them could run through spactrum, therefore being recorded, yet the solution itself is not involved.
-
@dashrender said in Quad9 DNS Malicious Domain Blocking Service:
This is declared as something built by law enforcement. We can be sure they are wording thing in their best interest.
For example all traffic flowing to them could run through spactrum, therefore being recorded, yet the solution itself is not involved.
Well so far the benefits of me using Quad9 at home outweigh the fact that the GCA was involved in building it. I really don't care about that, until I'm given a real reason that I am not aware of or don't see.
Right now I'm using the default... Time Warner... so I'd rather use Quad9 over that any day.
-
@tim_g said in Quad9 DNS Malicious Domain Blocking Service:
@dashrender said in Quad9 DNS Malicious Domain Blocking Service:
This is declared as something built by law enforcement. We can be sure they are wording thing in their best interest.
For example all traffic flowing to them could run through spactrum, therefore being recorded, yet the solution itself is not involved.
Well so far the benefits of me using Quad9 at home outweigh the fact that the GCA was involved in building it. I really don't care about that, until I'm given a real reason that I am not aware of or don't see.
Right now I'm using the default... Time Warner... so I'd rather use Quad9 over that any day.
Why not just use google’s?
8.8.8.8 and 8.8.4.4This is what I’ve been using for years.
