Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> "...stops using Google's DNS servers, that has a permanent log policy."

This is misleading. Google's DNS privacy policy is very reasonable. The only permanent logs are at the city/metro level. I trust their servers far more than I trust Comcast's or Verizon's. https://developers.google.com/speed/public-dns/privacy



>I trust their servers far more than I trust Comcast's or Verizon's

I agree with you, but if Comcast of Verizon are your ISP, they can already see/log which sites you browse (Unless you use Tor or a VPN, that's it) without the need to log your dns requests.

So, as funny as it sounds, I use my ISP dns server for "privacy" (the right term would be "for not telling even more third parties which sites I browse").


They'd also be able to see the queries their customers do on the Google DNS servers.


The better way would be to install a dns resolver on the phone, and stop sending log entires to other companies in order to save a few milliseconds. On debian (PC), its about as complicated as answering a couple of install questions.


Wait what? Surely your PC has to use some other authoritative name server? How are you getting this list updated?


DNS name resolving work by having a resolver traversing the domain name from right to left, starting in theory (but not in practice) by contact the dot servers, then to a TLD (com, org, net) server, and last to the domains name servers.

However, this is not how things is commonly done. Most client machines simply sends this work over to their ISP (or google), and wait for the third-party to do it for them. The third-party then datamine this traffic in order to get revenue.

In general, what you willingly give to a third-party can never be seen as inherently private. Additionally, An intruder that want this information would have to hack, tap or steal the information rather than just leaning on the ISP/Google.


Can you elaborate on this? I'm not sure if I fully understand


" ISP, and location information (kept permanently) are stored on the servers." https://en.wikipedia.org/wiki/Google_DNS#Privacy


Right, so Google end up with the IP address of the NAT gateway that my mobile provider puts me through. Hundreds, if not thousands, of other people will be sharing the same gateway.

In addition, DNS doesn't send my GPS co-ordinates along with the request, so it will just be IP geolocation data which Google will collate for their own stats on their DNS servers (So they can see/log what regions people access from, etc.).

Just because it mentions storing location doesn't mean they are trying to monitor every step you take when using their DNS.


True, but let me prefer DNS providers with "no log" policy.


Any particular recommendations?


I prefer OpenNIC, but check out here for a couple of more: https://prism-break.org/en/categories/gnu-linux/#dns




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: