Browse via Tor
  • About Me
  • Services
  • Links
Ben Tasker Eagle Light

BenTasker.co.uk

  • Home
  • Blog
    • Opinion
    • The Internet
    • Law
    • Software Development
    • Security
    • Privacy
    • General
  • Whitepapers
    • General Business
    • General Security
    • Development/Programming
    • Privacy
    • Network Security
  • Documentation
    • Linux
    • Training
    • Malware
    • Data Forensics
    • Development/Programming
    • Security
    • Vehicles
    • Mobile Phones
    • Joomla!
    • PHPCredLocker
      • PHPCredLocker Plugins
      • PHPCredLocker Security
      • News
        • Release Notes
        • Disclosures
    • Release Notes
    • Gaming
      • Cheats
  • Videos
  • Shop
    • Joomla Extensions
    • E-Books
    • PHPCredlocker Plugins
    • Stock Photos

Home

Popular Tags

  • Security
  • Republished
  • Privacy
  • Linux
  • Lingerie
  • Joomla
  • Howto
  • Documentation
  • Boudoir
  • Blonde

Latest Posts

  • So Long WhatsApp
  • Musings on Home Automation
  • Vauxhall Corsa D: Oil Pressure Switch Replacement
  • Generating a Vanity Address for Version 3 Onions
  • Saab 9-3: Rear Pads and Disc Replacement
  • Building a DNS over TLS (DoT) server

    WARNING: This article is outdated and has been superseded by Configuring Unbound for Downstream DoT.

    Since Unbound 1.6.7 there's a better way than the one described here

    I previously posted some documentation on how to build a DNS over HTTPS (DoH) Server running Pi-Hole and/or Unbound.

    There's another standard available, however - RFC 7858 DNS over TLS (DoT)

    DoT isn't as censorship resistant as DoH (as it's easier to block), but does provide you with additional privacy. It also has the advantage of being natively supported in Android Pie (9), so can be used to regain control of your queries without needing to run a dedicated app link Intra, with all the issues that might entail.

    In this documentation we're going to trivially build and place queries against a DoT server.

  • Configuring Unbound for Downstream DoT

    Quite some time ago, I wrote some documentation on how to stand up a DNS-over-TLS server using a Nginx reverse streams proxy to terminate the SSL.

    However, since then (in fact, back in 1.6.7) Unbound released support for directly terminating TLS connections.

    This documentation details the (simple) config changes necessary to configure Unbound to service DNS over TLS (RFC 7858) queries.

     


Popular Tags

  • Security
  • Republished
  • Privacy
  • Linux
  • Lingerie
  • Joomla
  • Howto
  • Documentation
  • Boudoir
  • Blonde

Latest Posts

  • So Long WhatsApp
  • Musings on Home Automation
  • Vauxhall Corsa D: Oil Pressure Switch Replacement
  • Generating a Vanity Address for Version 3 Onions
  • Saab 9-3: Rear Pads and Disc Replacement

  • Google+
  • License Details
  • Privacy Policy
  • Cookies
  • Stored Data
  • Sitemap
Donations BTC: 14hJYqCNLi7yJH8QkUqB2VEg3jx4pXBN5X / https://paypal.me/BTasker
Based on a template by JoomSpirit, customised by B Tasker
JoomSpirit
About this template