New Posts  All Forums:Forum Nav:

Open DNS - Page 2

post #11 of 18
Thread Starter 
Quote:
Originally Posted by DuckieHo View Post
Why not run phishing and web filtering on your routers?
Because the boss said to look at open DNS as a possible solution Not to mention open DNS would probably be easier to setup. To be honest I'm not even too sure what kind of hardware we have here..... I only started a few days ago.
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
post #12 of 18
Quote:
Originally Posted by AdmnPower View Post
How about their cache being poisoned, do you know how often they clear and rebuild it. Also how do domains provided by say dyndns.com work with it. Since those change often is there any way to compensate for this. Would you have to add an exception for it or something.
If security is that big an issue, you should run your own.

Domains from dyndns.org run exactly the same as anywhere else.
Underground
(14 items)
 
  
CPUMotherboardGraphicsRAM
Core i7 920 C0 ASUS P6T6 WS Revolution GTX 460 TR3X6G1600C8D 
Hard DriveOptical DriveCoolingOS
WD1001FALS SAMSUNG SH-S223F 22X DVD MULTI Corsair H50 Fedora 16 KDE x86_64 
MonitorKeyboardPowerCase
HP w19b Microsoft Comfort Curve Corsair CX600 Thermaltake Armor VA8003BWS 
MouseMouse Pad
Razer DeathAdder Black 
  hide details  
Reply
Underground
(14 items)
 
  
CPUMotherboardGraphicsRAM
Core i7 920 C0 ASUS P6T6 WS Revolution GTX 460 TR3X6G1600C8D 
Hard DriveOptical DriveCoolingOS
WD1001FALS SAMSUNG SH-S223F 22X DVD MULTI Corsair H50 Fedora 16 KDE x86_64 
MonitorKeyboardPowerCase
HP w19b Microsoft Comfort Curve Corsair CX600 Thermaltake Armor VA8003BWS 
MouseMouse Pad
Razer DeathAdder Black 
  hide details  
Reply
post #13 of 18
Thread Starter 
An interesting thing I dug up about this service as well, if you go to google letting your isp's dns servers point you there you'll probably be directed to ip - 64.233.169.99 or something very similar. If you're using open dns you get sent to 208.69.32.230 which resolves to google.navigation.opendns.com. So why when we asked for google did we get something run by open dns?
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
post #14 of 18
Quote:
Originally Posted by DuckieHo View Post
Why not run phishing and web filtering on your routers?
It doesn't do anything on my router...
AMD Power
(16 items)
 
Macbook Pro
(13 items)
 
Web Server
(13 items)
 
CPUMotherboardGraphicsRAM
AMD FX 9590 Asrock 990FX Extreme9 ASUS Radeon HD 7870 2GB 8GB (2x4GB) G.SKILL 1866 
Hard DriveOptical DriveCoolingOS
Hitachi 1TB Blu-Ray reader / DVD burner Coolermaster Water Cooling kit bundled with 9590 Windows 10 x64 
MonitorMonitorMonitorKeyboard
Dell 2209WA Dell 2209WA Dell 2209WA Logitech G910 Orion Spark 
PowerCaseMouseMouse Pad
SeaSonic S12G 650W Corsair Vengeance C70 Gunmetal Black Razer DeathAdder 2013 Ripper XXL 
CPUMotherboardGraphicsRAM
Intel i7  Apple Intel HD 3000 / AMD Radeon HD 6750M 16GB (2x4GB) GEIL DDR3-1333 
Hard DriveOptical DriveOSMonitor
SAMSUNG 840 EVO Apple Combo Drive OS X 10.9 Mavericks 15" 1680x1050 
PowerCase
Apple power brick Aluminum 
CPUMotherboardGraphicsRAM
Phenom II 940 BE @3.2GHz DFI LanParty 7200GS 8GB DDR2 GSkill 1000 
Hard DriveOSMonitorPower
30 GB SSD (webroot), 80GB (OS) Gentoo amd64 SSH 430 Watt Rosewill 
  hide details  
Reply
AMD Power
(16 items)
 
Macbook Pro
(13 items)
 
Web Server
(13 items)
 
CPUMotherboardGraphicsRAM
AMD FX 9590 Asrock 990FX Extreme9 ASUS Radeon HD 7870 2GB 8GB (2x4GB) G.SKILL 1866 
Hard DriveOptical DriveCoolingOS
Hitachi 1TB Blu-Ray reader / DVD burner Coolermaster Water Cooling kit bundled with 9590 Windows 10 x64 
MonitorMonitorMonitorKeyboard
Dell 2209WA Dell 2209WA Dell 2209WA Logitech G910 Orion Spark 
PowerCaseMouseMouse Pad
SeaSonic S12G 650W Corsair Vengeance C70 Gunmetal Black Razer DeathAdder 2013 Ripper XXL 
CPUMotherboardGraphicsRAM
Intel i7  Apple Intel HD 3000 / AMD Radeon HD 6750M 16GB (2x4GB) GEIL DDR3-1333 
Hard DriveOptical DriveOSMonitor
SAMSUNG 840 EVO Apple Combo Drive OS X 10.9 Mavericks 15" 1680x1050 
PowerCase
Apple power brick Aluminum 
CPUMotherboardGraphicsRAM
Phenom II 940 BE @3.2GHz DFI LanParty 7200GS 8GB DDR2 GSkill 1000 
Hard DriveOSMonitorPower
30 GB SSD (webroot), 80GB (OS) Gentoo amd64 SSH 430 Watt Rosewill 
  hide details  
Reply
post #15 of 18
Quote:
Originally Posted by timw4mail View Post
It doesn't do anything on my router...
Do you have a router capable of running phishing and web filtering?
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #16 of 18
I would like to add that I've used OpenDNS for years without incident and always go to my intended site unless I type it wrong.

I've even updated friends and family to OpenDNS in their routers as well and have never once had an issue but only praise when someone calls me to state it blocked a phish or privacy restricted site.
Refreshed Duo
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0@4.25Ghz (500x8.5) Gigabyte GA-EP45-UD3P EVGA GTX285 (720/1674/2772) 2x2gb G.SKILL PC8500 
Hard DriveOptical DriveOSMonitor
3xWD 250GB RAID0 Sony DVD/CDR/RW Windows 7 Ultimate x64 ACER 24" P241WAID LCD 
KeyboardPowerCaseMouse
Logitech G15 (Original) OCZ GameXStream 700w SLI ThermalTake Armor Black Logitech G5 
Mouse Pad
Razor XACT 
  hide details  
Reply
Refreshed Duo
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0@4.25Ghz (500x8.5) Gigabyte GA-EP45-UD3P EVGA GTX285 (720/1674/2772) 2x2gb G.SKILL PC8500 
Hard DriveOptical DriveOSMonitor
3xWD 250GB RAID0 Sony DVD/CDR/RW Windows 7 Ultimate x64 ACER 24" P241WAID LCD 
KeyboardPowerCaseMouse
Logitech G15 (Original) OCZ GameXStream 700w SLI ThermalTake Armor Black Logitech G5 
Mouse Pad
Razor XACT 
  hide details  
Reply
post #17 of 18
Quote:
Originally Posted by error10 View Post
If security is that big an issue, you should run your own.
This isn't necessarily true when talking about OpenDNS. Prior to July 2008, OpenDNS implemented Source Port Randomization independently from MSDNS, BIND, etc. for all of it's servers and dodged a major DNS flaw that allowed for cache poisoning in a matter of seconds. The OpenDNS guys have a good mind towards security. MSDNS and BIND didn't even have patches available to implement Source Port Randomization until July 08 so if you were running those DNS server you didn't have any protection from this flaw.

Also, you can implement OpenDNS for a small pool of your DHCP leases and see how it goes. It's free so it doesn't hurt to try it out.
Edited by gnomepunk - 12/17/08 at 7:42pm
Tincan
(14 items)
 
  
CPUMotherboardGraphicsRAM
i5-750 GA-P55A-UD4P eVGA GTX570 8GB Corsair Dominator DDR3-1600 
Hard DriveCoolingOSMonitor
OCZ Vertex 2 Corsair H50 Windows 7 LG W2486L 
KeyboardPowerCaseMouse
Filco Majestouch 2 Tenkeyless Corsair 750TX Corsair 800D Razer Imperator 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
Tincan
(14 items)
 
  
CPUMotherboardGraphicsRAM
i5-750 GA-P55A-UD4P eVGA GTX570 8GB Corsair Dominator DDR3-1600 
Hard DriveCoolingOSMonitor
OCZ Vertex 2 Corsair H50 Windows 7 LG W2486L 
KeyboardPowerCaseMouse
Filco Majestouch 2 Tenkeyless Corsair 750TX Corsair 800D Razer Imperator 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
post #18 of 18
Thread Starter 
I think we're going to try implementing it here, I just have to get all the documentation and such figured out for implementing and rolling back in case of problems. I think we're going to configure out mail to continue using the original DNS severs provided by our ISP so we don't have any problems with resepect to mail.
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
Thor
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core 2 Quad Q6600 Kentsfield 2.4GHz GIGABYTE GA-P35-S3G Sapphire Radeon HD 3870 X2 2 x 2gig pqi Turbo 
Hard DriveOptical DriveOSPower
Seagate Barracuda 250GB Lite-ON DvD burner Windows Vista Business BFG Tech 650W ATX 
Case
Thermaltake M9 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security