When you type in an internet address into the address bar, for instance, StephenLittleton.com the computer has to find the location of the computer that is going to show it the website. This computer is aptly titled, “Server”. The computer that is viewing the website, the one you are using now, is called the “client”. Because most internet addresses are hosted by a single server, IP addresses are used. IP stands for “Internet Protocol” and is the language computer systems use to communicate over the wire. Right now, most of the internet runs on IPv4 but is slowly making the transition to IPv6 addresses. For now, we will deal with IPv4.
Typically, stephenlittleton.com would resolve to a 4 digit set of numbers. These can be regular integers or 16 bit integer and hex values as well. An IP address can be expressed in dotted decimal, binary, octal, or hexidecimal. For this article, we will be using the dotted decimal notation. These address change and because it would be hard to get the spellings correct and the awkwardness of having to register a not so user friendly name would be something of a mess to say the least. So in order to translate these names into addresses the client computer needs to ask an authority. This is called a Domain Name Server, or DNS for short. Even though SERVER is in the last part of the abbreviation, it is still very common to speak and notate it as DNS Server. This redundancy is often overlooked especially in professional environments.
The default settings, the ones most people use, are the DNS servers that your ISP (Internet service provider) uses. They program these into their routers or devices. If you are using a phone, these servers are pulled automatically. However, when you switch to WiFi, it uses your ISP instead of your mobile provider.
The DNS Server controls your internet. You can have a location, it can be known worldwide as ATLANTA for instance. But if you are able to trick someone into believing its Hawaii, then it doesn’t matter what everyone else calls it. That’s how a DNS Spoof works. The DNS controls where you go, who you go to and where the computer ends up. It’s a well known fact that certificates are susceptible to hacking and cannot be completely trusted.
If you’ve ever been surfing a well known site like google, and had the message it can’t be trusted and proceed anyway, its probably been spoofed at one point.
The proper DNS Server can change everything. It can completely block virus and tracking activity no matter HOW INFECTED YOU ARE sometimes. By disconnecting communication with the command and control server and by rendering the malware useless.
Depending on your settings, a VPN Protects you by using it’s own DNS servers and blocking known malware at the source. You don’t necessarily need a VPN to be safe. If you have proper data safety, you can change your DNS settings and by using a few programs you can find one that works best for you.
Below is a list of some areas to start researching. Unless you are familiar, I would not recommend proceeding on your own unless you are willing to take some time to figure out how to use it, and how to reset it back to normal if you cannot connect. Using custom DNS servers blocks malware but it can also prevent certain things from working should you be so unfortunate as to already be using these things.
NextDNS.io – Free and Paid versions of DNS with their own APP for PC/Mobile. User friendly and they have a link to download a program called YOGA DNS. It’s free for 30 days but then it’s trial is up.
https://dnscrypt.info/ - Totally free and fun but intense bunch of programs. If you are willing to learn, its ready and waiting, unrestricted and free. The guides are easy and after a good sitting you will have the confidence needed to surf.
You only need one program running at a time. Do not use multiple DNS servers because they will cause conflicts when opening ports. Using multiple ones does not give you more protection. You are basically using the custom DNS as an authority to ask for directions. Keep that in mind.
Thank you for reading my report on DNS. It is aimed at beginner – novice readers but can be enjoyed by experts.
Top comments (0)