Ask HN: DNSCrypt over VPN is not secure? | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

		Ask HN: DNSCrypt over VPN is not secure?
		1 point by SteveDeFacto on Oct 25, 2013 \| hide \| past \| favorite \| 2 comments

		So I thought I had a pretty secure setup by using DNSCrypt and a VPN server. My thought was that the VPN server would mostly see encrypted ssl data since I use HTTPS Everywhere and by using encrypted DNS they can't tell which sites I am visiting. However, it has recently come to my attention that someone else has control of the OpenDNS dashboad. Essentially, this means that whoever it is can view all the sites I visit and block me from sites of their choosing which they have. I left an auto clicker running all night to rate thousands of girls on an online dating site which lead to hundreds of messages. hehe... I thought the dating site would block me but instead whoever has control of the OpenDNS dash board decided to block everyone on the VPN server from accessing the site. Probably because I spammed their logs. I can still access it just fine using any other DNS provider. So DNSCrypt+VPN = Less secure. Sine any VPN server would have this problem unless I am the one in control of the OpenDNS dashboard. What other options are there for resolving domains over a VPN without someone including my ISP logging which sites I am visiting?

stephenr on Oct 25, 2013 [–]

If you run a VPN server on a VPS you control, why can't you then run a DNS proxy on it too?

SteveDeFacto on Oct 25, 2013 | [–]

I don't control it. I pay to use it.

Consider applying for YC's Summer 2025 batch! Applications are open till May 13
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact