DNS is extremely interesting because it is a distributed network that everyone depends on. DNS has security innovations with DNSSEC, DANE, TLSA. Granted, authoritative nameservers may be more interesting than resolvers, but resolvers have a lot to them, too.
> Everyone can run their own DNS server in minutes, there are resolving DNS servers everywhere, you can choose whichever, they will all work like 99,999% the same.
I ran my own resolver for a while and the latency was terrible. A lot of effort goes into getting good latency everywhere.
> It mostly makes no difference, at all, which DNS server someone uses*
Yea it does. DNS is often the first place governments will apply censorship, since it’s easier than applying for a takedown when what they seek to censor is not illegal in the hosting country.
I beg your pardon.
DNS is extremely interesting because it is a distributed network that everyone depends on. DNS has security innovations with DNSSEC, DANE, TLSA. Granted, authoritative nameservers may be more interesting than resolvers, but resolvers have a lot to them, too.
> Everyone can run their own DNS server in minutes, there are resolving DNS servers everywhere, you can choose whichever, they will all work like 99,999% the same.
I ran my own resolver for a while and the latency was terrible. A lot of effort goes into getting good latency everywhere.
> It mostly makes no difference, at all, which DNS server someone uses*
Yea it does. DNS is often the first place governments will apply censorship, since it’s easier than applying for a takedown when what they seek to censor is not illegal in the hosting country.