View Full Version: Internal Dns Resolver / Cache

abelhadigital > HostsMan > Internal Dns Resolver / Cache



Title: Internal Dns Resolver / Cache
Description: Saved entries?


poolsharkzz - October 15, 2008 05:25 PM (GMT)
Hello to all,

I am very concerned about privacy. I use CCleaner often to keep my privacy when surfing the web. Security is a big issue with me as well.

My questions are these:

1.) Does the Internal DNS Resolver have a cache for entries?

2.) If so, where is this cache located on my system?

3.) If so, how long does my system keep these entries?

4.) Can anyone or myself have access to these entries?

5.) Is there a way to "clean" this cache using CCleaner?

6.) If so, what are the new entries for winapp2.ini?

7.) Does this "cache" have any impact on privacy?

8.) If I do clean the cache often, will it slow down my browsing speed?

9.) Can I use Open DNS with HostsMan and HostsServer?

10.) What registry settings do I need to insure privacy and security?

Finally, you folks are aware of the worldwide security flaw with DNS?

Massive, coordinated DNS security patch released:

http://www.wilderssecurity.com/showthread....t=Security+Flaw

http://www.wilderssecurity.com/showthread....t=Security+Flaw

http://www.computerworld.com/action/articl...tsrc=hm_ts_head

http://www.wilderssecurity.com/showthread....t=Security+Flaw

http://www.doxpara.com/

XP SP3+
Internet Explorer 7
M$ DNS Client Service is disabled

HostsMan 3.2.69 Beta5
HostsServer 1.2.47 Beta3

Please explain, I'm really curious about this.

Thanks! (Sorry for the length)

poolsharkzz

rloureiro - October 16, 2008 09:46 AM (GMT)
First of all, just want to clarify that the internal DNS resolver isn't used by any other application and, in fact, it's not even used by HostsMan's updater. This resolver is used only in "Tools" > "Resolve Host Name" and only if the "Use the internal DNS resolver" option is checked. The updater uses the getaddrinfo function available in winsock.

QUOTE (poolsharkzz @ Oct 15 2008, 05:25 PM)
Hello to all,
1.)  Does the Internal DNS Resolver have a cache for entries?

No.
QUOTE
9.)  Can I use Open DNS with HostsMan and HostsServer?

Yes. If Windows is configured to use Open DNS, that's what HostsMan will use.
QUOTE
Finally, you folks are aware of the worldwide security flaw with DNS?

Yes.

poolsharkzz - October 16, 2008 03:28 PM (GMT)
I understand now...

Is there a way to have an Internal DNS Resolver similar to M$ DNS Client Service that is 1000% better and faster either built into HostsMan / HostsServer or is there a really good stand-alone program that you can recommend?

I have noticed as of late that my page renderings are a bit slower, sometimes it takes 3-4 seconds or even longer - especially with a page with a ton of graphics.

I used to have a less than 1-2 seconds page rendering. I'm 99% sure that I am not infected with any sort of nasty.

I was thinking that it was my security set up, so I disabled the MVPS Hosts File, HostsMan, and HostsServer - it helped, but not that much.

Any ideas?

poolsharkzz

YoKenny - October 16, 2008 03:51 PM (GMT)
QUOTE
Is there a way to have an Internal DNS Resolver similar to M$ DNS Client Service that is 1000% better and faster either built into HostsMan / HostsServer or is there a really good stand-alone program that you can recommend?
I like and use OpenDNS but I don't know if you are going to get 1000% better and faster service unless you get you get a fiber connection to your location.

What connection method are you using now and does the modem have a built in firewall?

QUOTE
I have noticed as of late that my page renderings are a bit slower, sometimes it takes 3-4 seconds or even longer - especially with a page with a ton of graphics.
Comodo firewall will really slow down page rendering especially if there are lots of graphic images to be retrieved.

Why are you so paranoid about privacy?

Are you a member of the FBI, CIA Interpol or an Al-Queda operative?

poolsharkzz - October 16, 2008 09:28 PM (GMT)
I have AT&T DSL with the standard modem they gave me when I signed up a few years ago, made by Motorola - there is no built-in firewall, I believe.

LOL - Funny!!! :lol:

Paranoid about online privacy? Paranoid about my system's security?

Well, a little bit, AS WE ALL SHOULD BE!

Especially with the olé lady shopping online, we do our banking online, identity theft on the rise, hackers, click fraud, all kinds of security issues left and right, and I work in an Industry were more often than not I deal with confidential and sensitive materials of our Client's and 2 days per week I work from home. Enough said?

Go to this website: http://www.grc.com Gibson Research Corporation

Then click on "Shield's Up!" - on the next page, scroll down until you see the "Shield's Up!" link under "Hot Spots" and then scroll down again to the bottom and take a few moments and read - you just might learn something...

"The text below might uniquely identify you on the Internet"

Just something to keep in mind as you wander the Internet, asking folks ignorantly if they were a member of the FBI, CIA Interpol or an Al-Queda operative...

poolsharkzz

YoKenny - October 16, 2008 10:52 PM (GMT)
QUOTE
I have AT&T DSL with the standard modem they gave me when I signed up a few years ago, made by Motorola - there is no built-in firewall, I believe.
What is the model no. of the modem?

QUOTE
Especially with the olé lady shopping online, we do our banking online, identity theft on the rise, hackers, click fraud, all kinds of security issues left and right, and I work in an Industry were more often than not I deal with confidential and sensitive materials of our Client's and 2 days per week I work from home. Enough said?
So you are a lawyer or a health care worker?

If you are so concerned and you do not trust the Internet because of "identity theft on the rise, hackers, click fraud, all kinds of security issues left and right" so why do you use the Internet for such personal matters if you are so paranoid?

QUOTE
Go to this website: http://www.grc.com Gibson Research Corporation
I am well aware of Steve Gibson's site and his ShieldsUP! service:
https://www.grc.com/x/ne.dll?bh0bkyd2

What I see
QUOTE
The text below might uniquely
identify you on the Internet
Your Internet connection's IP address is uniquely associated with the following "machine name":

bas6-toronto12-1088931878.dsl.bell.ca

The string of text above is known as your Internet connection's "reverse DNS." The end of the string is probably a domain name related to your ISP. This will be common to all customers of this ISP. But the beginning of the string uniquely identifies your Internet connection. The question is: Is the beginning of the string an "account ID" that is uniquely and permanently tied to you, or is it merely related to your current public IP address and thus subject to change?


You are on IP address 76.217.116.111
QUOTE
OrgName:    AT&T Internet Services
OrgID:      SIS-80
Address:    2701 N. Central Expwy # 2205.15
City:      Richardson
StateProv:  TX
PostalCode: 75080
Country:    US

If you need privacy then use an anonymizing service like:
http://www.invisiblesurfing.com

But I would be more paranoid as then they could become a Man-in-the-middle attack victim.




Hosted for free by InvisionFree