Dns is what translates urls (google.com, lemmy.world, etc) into ip addresses (207.94.56.21) which your computer can actually understand. Dns can be used to track you but a good dns can also very slightly speed up your Internet because it gets you the address to websites a bit faster. I use adguard and have Cloudflare DNS upstream from that
I’d like to elaborate a bit on why DNS can be used to track you.
Nearly all web traffic is encrypted (https), you can check by looking at the padlock next to the URL in your browser. But DNS requests aren’t encrypted by default. This means anyone, most likely your ISP our the admin of your home network, can see what domains you’re accessing. That means just google.com, lemmy.world, etc. and not lemmy.world/post/… This isn’t a huge amount of info, but it does tell anyone who’s looking approximately what you’re doing (googling something, looking at lemmy, etc.).
To fix that there are a few different ways to encrypt DNS requests, the most common of which (afaik) is DNS over HTTPS, which will encrypt DNS requests like any other web request your browser makes. I don’t know why this hasn’t been made the default yet. Firefox has a setting for DNS over HTTPS, it calls it secure DNS.
How and why?
Search how not hard. DNS to pick a provider you trust.
Care to share where to read up on DNS and what it does, not that tech savy when it comes to networks.
Dns is what translates urls (google.com, lemmy.world, etc) into ip addresses (207.94.56.21) which your computer can actually understand. Dns can be used to track you but a good dns can also very slightly speed up your Internet because it gets you the address to websites a bit faster. I use adguard and have Cloudflare DNS upstream from that
I’d like to elaborate a bit on why DNS can be used to track you.
Nearly all web traffic is encrypted (https), you can check by looking at the padlock next to the URL in your browser. But DNS requests aren’t encrypted by default. This means anyone, most likely your ISP our the admin of your home network, can see what domains you’re accessing. That means just google.com, lemmy.world, etc. and not lemmy.world/post/… This isn’t a huge amount of info, but it does tell anyone who’s looking approximately what you’re doing (googling something, looking at lemmy, etc.).
To fix that there are a few different ways to encrypt DNS requests, the most common of which (afaik) is DNS over HTTPS, which will encrypt DNS requests like any other web request your browser makes. I don’t know why this hasn’t been made the default yet. Firefox has a setting for DNS over HTTPS, it calls it secure DNS.
This is a good explanation.
Oh, cool thanks - did not know that, going to read up on it.