Is there a way to make encrypted DNS resolutions? [closed]

ssl domain-name-system encryption

Is there a way to make encrypted DNS resolutions, so that a packet sniffer in the same network still can't guess what DNS has been requested?

Maybe, just thinking, by tunneling DNS requests through an HTTPS connection?


Sure. Use a VPN. Preferably one with good hard encryption. I'm thinking IPSEC using AES/SHA.

But then all your traffic gets tunneled. Not sure if that's a good thing or not, for you.


Check out DNSCurve by Daniel J. Bernstein. It's stated main point:

Confidentiality: DNS requests and responses today are completely unencrypted
and are broadcast to any attacker who cares to look. DNSCurve encrypts
all DNS packets.

I'd use a VPN to a trusted host/network, or maybe tor.

Related

Why can't DSC find a resource that's installed?
Recommended SpamAssassin update channels?
Monitor or log directory permission changes?
What issues should I watch for when rolling out CentOS as a desktop environment?
Apache Virtual Hosts - Map different paths of the same domain (or IP) to different sites
Cisco ASA logs "regular translation creation failed for icmp ..." for DNS traffic, yet it works
How do I mount a raid disk
How to re-create /tmp/mysql.sock?
Double VPN (OpenVPN)
Installing intermediate certificates in ELB
Windows PE autorun scripts
In IIS, Is it possible to execute a .HTML page as aspx?