joe codes

x-cart guru & custom programmer

  • About
  • Archives
  • Contact

Powered by Genesis

Internet Address Lookup Security

July 29, 2016 by joecodes Leave a Comment

Macintosh Security posted PAC Attacks When Using HTTPS! VPN To The Rescue with more good reasons to use VPN to secure your sensitive internet work. Since everyone already does that or uses only secure networks (right?) I was intrigued by the DNSCrypt information at the bottom to secure my internet address lookups.

1. DNSCrypt

DNSCrypt is a protocol that authenticates communications between a DNS client and a DNS resolver. It prevents DNS spoofing. It uses cryptographic signatures to verify that responses originate from the chosen DNS resolver and haven’t been tampered with.

On DNSCrypt.org go down to DNSCrypt for OSX for options to install on OS X (macOS). I used the first link for DNSCrypt-OSXClient installer. It was simple to download and install like any other app outside of the App Store.

Once installed find it as a new icon at the bottom of System Preferences and in the menu bar. The article mentioned OpenDNS and Cisco so I changed DNSCrypt Name Server from the obscure country to Cisco OpenDNS then clicked the big Enable DNSCrypt checkbox.

You’re done!

2. OpenDNS Root CA

Some sites, like Google, Facebook, and Twitter, don’t play along with OpenDNS. I found the helpful OpenDNS HSTS and Pinning Certificate Errors and used the OpenDNS Root CA link at the top to easily install their certificate.

But the errors persisted and this was not the full answer.

3. OpenDNS Updater

Then I stumbled across the very useful Certificate error on blocked domains when using OpenDNS which explains what is happening and gives both steps to the solution.

We already did the second step of installing the certificate, but the first step is to let OpenDNS know about your current IP address. The simplest solution is to create an OpenDNS login and get their OpenDNS Updater app. Once installed, launch it and login with your account. It adds a Login Item, appears in your menu bar, and does its thing automatically in the background.

The few remaining blocked sites now load normally and you’re set!

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on Reddit (Opens in new window)
  • Click to share on Facebook (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)
  • Click to email a link to a friend (Opens in new window)

Related

Filed Under: Uncategorized Tagged With: Apple, security

Leave a Reply Cancel reply

You must be logged in to post a comment.

Quick Thoughts

  • I was surprised to learn that foreach in JavaScript does not have a traditional break. The loop will run to completion.

  • Who knew that combination sums across all permutation lengths of an array would be so difficult? It was a challenge but the final product looks good and takes a lot of resources. Limiting the max length for basic memory limits. Would only do something like this for occasional reporting.

  • Working on a new project that can have hundreds of forms on a page. The browser was spending way too much time in Parse HTML. Wasted a bunch of time before learning this is a long-standing bug in Chrome when there are many forms or inputs. Other browsers are fine.

Recent Posts

  • Parting Ways with OWC
  • MacBook External DVD Player
  • Progressive Enhancement
  • Keychain Password Search
  • Smarty preg_match

Tag Cloud

Apple JavaScript Mason Perl PHP security simple Smarty speed stability Tax WWDC X-Cart

Search

Subscribe

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Recent Comments

  • Bad App Alert on Startup Item Help
  • iPhone Pre-Order Needs to Change on iPhone Pre-Order Warning
  • Apple vs Pro on My Personal Three S’s of Development