Man in the middle attacks are getting more and more common.
We all have this sense of security that our web browsing traffic is encrypted
because we use VPN, HTTPS, and SSL. But all a hacker needs to do is position
himself between your ISP and your computer, referred to as the last mile to
retrieve your information. They boom your DNS to leak all the encrypted
information to “the man in the middle.” For ordinary internet users, who are
just browsing, that may not be an issue because he will not be able to realize
things. But the hacker will get to know what websites you are visiting and how
long you are online when you are sharing sensitive information like account
passwords for banks. So to solve it, you need to boost your security by using
tools like DNSCrypt.
This article will let
you know how to boost your internet security with the tool.
How Does it Help?
First of all let us understand what exactly DNSCrypt does to boost your
security. In a nutshell, it will encrypt the information between the DNS server
and your computer so that the software being used by the “man in the middle”
may not read the information being collected. So when you try to open a
particular website, your browser will send an ordinary query to the local host
address and the request will be sent using the encrypted connection to the DNS
server. So it will work as a double checker to ensure the information shared
between your PC and the DNS server is encrypted even if you are already using
VPN or SSL and HTTPs
encryption.
Now about securing your internet security with the tool, you
are going to have to download it from the download installation package page.
When you visit the page, you will be able to click on the ‘Download’ link
either for Windows or Mac.
Once the download is complete, you can set about creating a
folder on your desktop and give it a name. Expert suggest it to name as ”DNSCrypt” then you will
extract all the files from the download and then drag them into your new
folder. Alternatively, you could right click and then choose the folder as the
destination for the extracted files.
How to Install?
Now to install, you will have to access the elevated CMD
prompt window. Make sure you can access administrator as you will have to click
right and then select run as administrator. The window will then open and you
will then need to enter the path corresponding to the bin folder. The command
"C:\Users\owner\Desktop\DNSCrypt\bin"
will direct you to the folder with the CSV and EXE files.
You can now install the proxy service from DNS, and change
the OPENDNS part and add a label from the CSV file and update if you wish using
public DNS resolvers that support the tool. Also, check to see that the path
corresponds to the location of the CSV file on your PC.
The CDM window will then display file information that should
show that the proxy
download service test has been run successfully. If it has not been
tested successfully then you may need to change the DNS resolver to find one
that works. Once done, you can install the proxy server.
Once the proxy server gets installed, you will receive a
prompt message saying the DNS
security got successfully installed, and it will provide you with the
key before prompting you to change the DNS settings. To do that you will go to
network settings, click on network and sharing center and then click on change
adapter settings. Choose the network you want to change, right-click and then choose
‘Properties.’ Click on the Transmission Control Properties (TCP) settings and
choose ‘Properties.’ Now change the preferred DNS to 127.0.0.1 and hit OK, then
choose TCP/IVP6 settings and change that to ::1, and then click ok and you have
now a secure DNS.
Conclusion
Now you should note that if you have a firewall, it may
interfere with your DNSCrypt.
So the best way how to boost your internet security with DNSCrypt would be to use TCP
over port 443 which will make the firewall recognize it as HTTPs traffic and
will not interfere with it.
No comments:
Post a Comment