misp-warninglists icon indicating copy to clipboard operation
misp-warninglists copied to clipboard

Published 20 hours ago verified publisher icon MISP

Some clarity on Public DNS Resolvers

Open alexcpsec opened this issue 7 years ago • 3 comments
trafficstars

Hey everyone! Long time listener, first time caller. ;)

Can you give me and @ekamioka10 on what is the sourcing of those public dns resolvers list? I was expecting a list of the super trustworthy folks (google dns, those 9.9.9.9 folks, opendns), and instead it seems to be an enumeration of the IPv4 space. :)

Would it be worth to maintain a "super trustworthy dns list"?

alexcpsec avatar Jan 25 '18 16:01 alexcpsec

Hi @alexcpsec,

Hope that you are doing well.

Indeed it would make sense. We wanted to separate the list in two different lists (the original one came from a merge of open resolvers done during a hackathon and we took a wrong decision that day ;-).

If you have the time to do a super trustworthy list of open resolvers, this would be great!

Thanks a lot.

adulau avatar Jan 25 '18 16:01 adulau

Understood! Thanks for the quick answer!

We might have something to share in the short/mid term. I'll update this issue and create a pull request when we do.

Cheers!!

alexcpsec avatar Jan 25 '18 16:01 alexcpsec

https://public-dns.info/nameservers.txt

I've been using this list for "known" public DNS servers. Granted, these DNS servers may not be fully trusted but they are up-to-date (about 22K rows). Also, they have another list on their website that has "all" DNS servers (but I don't use that one).

GlennHD avatar Feb 03 '20 03:02 GlennHD