Monday 18 May 2015

How to Boost Your Internet Security With DNSCrypt



Man in the middle attacks are getting more and more common. We all have this sense of security that our web browsing traffic is encrypted because we use VPN, HTTPS, and SSL. But all a hacker needs to do is position himself between your ISP and your computer, referred to as the last mile to retrieve your information. They boom your DNS to leak all the encrypted information to “the man in the middle.” For ordinary internet users, who are just browsing, that may not be an issue because he will not be able to realize things. But the hacker will get to know what websites you are visiting and how long you are online when you are sharing sensitive information like account passwords for banks. So to solve it, you need to boost your security by using tools like DNSCrypt

This article will let you know how to boost your internet security with the tool.

How Does it Help?


First of all let us understand what exactly DNSCrypt does to boost your security. In a nutshell, it will encrypt the information between the DNS server and your computer so that the software being used by the “man in the middle” may not read the information being collected. So when you try to open a particular website, your browser will send an ordinary query to the local host address and the request will be sent using the encrypted connection to the DNS server. So it will work as a double checker to ensure the information shared between your PC and the DNS server is encrypted even if you are already using VPN or SSL and HTTPs 
encryption. 



Now about securing your internet security with the tool, you are going to have to download it from the download installation package page. When you visit the page, you will be able to click on the ‘Download’ link either for Windows or Mac.

Once the download is complete, you can set about creating a folder on your desktop and give it a name. Expert suggest it to name as ”DNSCrypt” then you will extract all the files from the download and then drag them into your new folder. Alternatively, you could right click and then choose the folder as the destination for the extracted files.

How to Install?


Now to install, you will have to access the elevated CMD prompt window. Make sure you can access administrator as you will have to click right and then select run as administrator. The window will then open and you will then need to enter the path corresponding to the bin folder. The command "C:\Users\owner\Desktop\DNSCrypt\bin" will direct you to the folder with the CSV and EXE files.

You can now install the proxy service from DNS, and change the OPENDNS part and add a label from the CSV file and update if you wish using public DNS resolvers that support the tool. Also, check to see that the path corresponds to the location of the CSV file on your PC.

The CDM window will then display file information that should show that the proxy download service test has been run successfully. If it has not been tested successfully then you may need to change the DNS resolver to find one that works. Once done, you can install the proxy server.

Once the proxy server gets installed, you will receive a prompt message saying the DNS security got successfully installed, and it will provide you with the key before prompting you to change the DNS settings. To do that you will go to network settings, click on network and sharing center and then click on change adapter settings. Choose the network you want to change, right-click and then choose ‘Properties.’ Click on the Transmission Control Properties (TCP) settings and choose ‘Properties.’ Now change the preferred DNS to 127.0.0.1 and hit OK, then choose TCP/IVP6 settings and change that to ::1, and then click ok and you have now a secure DNS

Conclusion


Now you should note that if you have a firewall, it may interfere with your DNSCrypt. So the best way how to boost your internet security with DNSCrypt would be to use TCP over port 443 which will make the firewall recognize it as HTTPs traffic and will not interfere with it.

No comments:

Post a Comment