dns0 has some logging #2484
Comments
|
We should add a specific logging criteria on this page to note what is and isn’t acceptable data to store too |
|
This issue has been mentioned on Privacy Guides. There might be relevant details there: |
|
I think we should clearly state that logging relates to matching clients with queries, that is after all what most people are going to care about. "If I go to this website, is anyone going to know or have a record of that?" Basic metrics on how much of something happens that can't be tied back to a user shouldn't count as logging. We should probably switch quad9 to no logs based on their extensive privacy policy. If anonymity is in your threat model, then anonymous technology needs to be employed. The assumption here is you wouldn't even trust a privacy policy. |
|
This issue has been mentioned on Privacy Guides. There might be relevant details there: |
|
rethinkdns dev here
With DNS-over-TLS and especially DNS-over-HTTPS, logging protocol-relevant information that's not PII to pin-point clients becomes "easier". I don't suspect most DNS resolvers are nefarious, but a mere mention of "no PII" in policy document shouldn't inform PrivacyGuides' judgement if "matching clients with queries" is the criteria.
Providers that support ODoH and DNSCrypt v3 must be looked at for recommendations, imo. |
Affected page
https://www.privacyguides.org/en/dns/#recommended-providers
Description
Table should note that bulk data is collected for threat intelligence (see Cloudflare DNS for example of how to format such a note)
Sources
https://discuss.privacyguides.net/t/nextdns-logging-is-opt-out-not-opt-in-as-stated-on-pgs-dns-resolvers-recommendations-page/17206/57
Before submitting
The text was updated successfully, but these errors were encountered: