LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 08-28-2012, 02:04 PM   #1
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Rep: Reputation: 1
Question Security concern about OpenDNS


For aroud a month, I have been using OpenDNS. I must admit my internet speed has become a little faster, though not as per expectation. I'm happy with my current speed.
The concern is about the security, as many important data is transacted over my network.
I ask suggestions regarding this.

Thanks in advance.
 
Old 08-28-2012, 05:57 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,140
Blog Entries: 54

Rep: Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791
Quote:
Originally Posted by leosubhadeep View Post
The concern is about the security, as many important data is transacted over my network.
Could you briefly outline what your concerns are, the type of transactions and if you encrypt your in transit data?

Last edited by unSpawn; 08-28-2012 at 05:58 PM.
 
Old 08-29-2012, 04:14 PM   #3
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Quote:
Originally Posted by unSpawn View Post
Could you briefly outline what your concerns are, the type of transactions and if you encrypt your in transit data?
Well, sometimes I do online banking transactions and other financial transactions required for my work. Also, source codes of project files are passed over the connection. No I don't manually encrypt my data, it's another thing the clients (e.g. banks) use their own kind of protections.

I use Google Apps for my business, still have a doubt about any leakage (output) / attacks (input) for OpenDNS.
Do you use it yourself? Actually I was looking for a LQ guy who uses this, as OpenDNS site claims a lot and so every service provider does!
 
Old 08-29-2012, 05:25 PM   #4
jefro
Guru
 
Registered: Mar 2008
Posts: 11,387

Rep: Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397
OpenDNS if bought as a service may provide some small amount of security. The free IP is a good start but dns can't provide security. Data security is a number of practices that secure your system. The list is extensive. Knowing and using more of them increases your security.


I'd use a live cd of a hardened OS.
 
Old 08-29-2012, 05:59 PM   #5
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,140
Blog Entries: 54

Rep: Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791Reputation: 2791
Quote:
Originally Posted by leosubhadeep View Post
Well, sometimes I do online banking transactions and other financial transactions required for my work. Also, source codes of project files are passed over the connection. No I don't manually encrypt my data, it's another thing the clients (e.g. banks) use their own kind of protections.
I use Google Apps for my business, still have a doubt about any leakage (output) / attacks (input) for OpenDNS.
Simply put servers serve and accept data, routers route traffic and domain name servers basically resolve host names to IP addresses. So while you expose (reverse) host names to the latter in requests you don't leak more data to them than that.


Quote:
Originally Posted by leosubhadeep View Post
Do you use it yourself?
No I don't. For one I don't need the phishing / malicious / "family" / whatever else filtering Norton, Advantage, Google Public and other free DNS services come with and I don't like the redirects (they've got to pay bills too). I want a reliable answer like "NXDOMAIN" because last time I checked Open Standards were the foundation of networking and not adverts.


Quote:
Originally Posted by jefro View Post
I'd use a live cd of a hardened OS.
@OP: please see this thread.
 
Old 08-30-2012, 12:44 AM   #6
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Quote:
Originally Posted by unSpawn View Post
Simply put servers serve and accept data, routers route traffic and domain name servers basically resolve host names to IP addresses. So while you expose (reverse) host names to the latter in requests you don't leak more data to them than that.
Glad to know that. Thanks a lot.

No I don't. For one I don't need the phishing / malicious / "family" / whatever else filtering Norton, Advantage, Google Public and other free DNS services come with and I don't like the redirects (they've got to pay bills too). I want a reliable answer like "NXDOMAIN" because last time I checked Open Standards were the foundation of networking and not adverts.[/QUOTE]

Couldn't get a single line. What were you trying to say?
 
Old 08-30-2012, 12:55 AM   #7
jschiwal
Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 654Reputation: 654Reputation: 654Reputation: 654Reputation: 654Reputation: 654
You can use OpenDNS' family filter to block unsuitable sites. The blocked sites are more likely to contain malware.
For an SMB I'd recommend using a dedicated netbook for online banking transactions. Do one of only two things, your banking or security updates. When not doing this, power down and lock it in your safe.
 
Old 08-30-2012, 03:01 AM   #8
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Quote:
Originally Posted by jschiwal View Post
You can use OpenDNS' family filter to block unsuitable sites. The blocked sites are more likely to contain malware.
For an SMB I'd recommend using a dedicated netbook for online banking transactions. Do one of only two things, your banking or security updates. When not doing this, power down and lock it in your safe.
That was what I had wanted to know. Thanks for telling me about the "Parental Control". But using it enabled, my bank's website isn't showing up properly.
The idea of a dedicated netbook is good. I must consider it for my transactions.
 
Old 08-30-2012, 08:10 PM   #9
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Red face

Trying to use Google's public DNS before making any decision. OpenDNS truly has to pay bills, too; I just overlooked that my privacy can be compromized. Google is reliable, but not giving as much speed as OpenDNS in Linux.
 
Old 09-08-2012, 12:13 PM   #10
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Unhappy

Guys, I think I was doing wild-goose-chase. So sorry for wasting your valuable time.

I think no OpenDNS/Google DNS service can give me a faster browsing experience since they are all US-based and I'm using all aspects of Ubuntu (from software source to locale) of India. I am using BSNL broadband service, so my common sense tells me that OpenDNS is totally useless and uncontextual for me and I'd better not use it as I'm somehow disclosing my identity (e.g. logging in to OpenDNS).

I think I'm right, but I'll really appreciate if at least two of senior members tell me that I'm thinking right.
 
Old 09-08-2012, 02:05 PM   #11
NyteOwl
Member
 
Registered: Aug 2008
Location: Nova Scotia, Canada
Distribution: Slackware, OpenBSD, others periodically
Posts: 512

Rep: Reputation: 138Reputation: 138
You use apps hosted by a third party known for data mining on their servers to run your business and your worried about your DNS?
 
Old 09-08-2012, 04:00 PM   #12
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Angry No one can know everything

Quote:
Originally Posted by NyteOwl View Post
You use apps hosted by a third party known for data mining on their servers to run your business and your worried about your DNS?
Yes, I'm worried (or was worried) abount my DNS. I think I know the apps I run well, but unsure/ignorant about DNS. Is that a problem? I eat KFC meals occassionally, KFC is known to me, but I don't know their secret recipe.
 
Old 09-09-2012, 12:16 PM   #13
jefro
Guru
 
Registered: Mar 2008
Posts: 11,387

Rep: Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397Reputation: 1397
OpenDNS is a good product. It is part of a total security collection of best practices. Using more of them helps protect your data.
 
1 members found this post helpful.
Old 09-14-2012, 02:32 PM   #14
NyteOwl
Member
 
Registered: Aug 2008
Location: Nova Scotia, Canada
Distribution: Slackware, OpenBSD, others periodically
Posts: 512

Rep: Reputation: 138Reputation: 138
I'd be more worried about Google having complete access to my data but to each their own.
 
Old 09-14-2012, 04:01 PM   #15
leosubhadeep
Member
 
Registered: Jul 2012
Location: West Bengal,India
Distribution: Ubuntu 14.04,Fedora 20,Windows 7
Posts: 111
Blog Entries: 3

Original Poster
Rep: Reputation: 1
Quote:
Originally Posted by NyteOwl View Post
I'd be more worried about Google having complete access to my data but to each their own.
Haha, I agree! Nosey Google, they even want to know (probably) what you have worn underneath yourpants.
 
  


Reply

Tags
cloud, network, opendns


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] PHP security concern matiasar Programming 8 04-09-2011 08:20 PM
Security Concern on LINUX Hi_This_is_Dev Linux - General 8 09-29-2010 05:48 AM
Possible Security Concern? keysorsoze Linux - Security 2 12-15-2006 01:36 PM
A security concern! Please advise! vharishankar General 5 11-30-2004 10:05 AM
Security concern linuxRules Linux - General 3 05-22-2002 01:23 PM


All times are GMT -5. The time now is 08:00 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration