Privacytools.io: ๐Ÿ—„๏ธ DNS provider suggestion | Lelux.fi

Created on 24 Aug 2019  ยท  7Comments  ยท  Source: privacytools/privacytools.io

Basic Information

Name: Lelux
Filtering: No
Privacy policy: https://lelux.fi/privacy/
Protocols: DoT (853)
Server/Location: Luxembourg
Source: -
Type: hobby project?
Website: https://lelux.fi/resolver/

Description

Recommended by #1206 as a backup so if we list it, I guess we should also list this or it will get recommended by someone sooner or later.

Required features:

  • [x] supports DoH or DoT
  • [x] supports DNSSEC
  • [x] doesn't log IP addresses during normal operation

    • I think this is the case judging by "Haproxy TCP/HTTP logs are disabled. No IP addresses are collected." but I am not sure on query log verbosity 1, so leaving unchecked and research required

Desired features

  • [x] supports QNAME minimization
๐Ÿ”Ž research required ๐Ÿ—„๏ธ DNS
Source
picture Mikaela

Most helpful comment

@Mikaela I do and I just sent him a message about it.

picture Amolith on 15 Sep 2019
1 👍1

All 7 comments

It seems silly to add another DNS server to an already packed list, especially when it doesn't support all the features that would make it fully privacy focused.

ProgressiveArchitect picture ProgressiveArchitect on 25 Aug 2019

I haven't been in contact with the admin (yet) nor tested support for the features it doesn't advertise. Or are you able to confirm that it's indeed missing features we require?

Mikaela picture Mikaela on 25 Aug 2019

Unbound verbosity level 1 simply provides the admin with some high-level operational information. I've documented that in my privacy policy under DNS services though you can also run man unbound.conf and search for verbosity to read it yourself.

His setup is the same as mine too; on Debian, DNSSEC validation and QNAME minimisation are both enabled by default.

EDIT

The wording on both of our policies was inaccurate; previously, they said "Unbound query logs are enabled" and now they say "Unbound debug logs are enabled". Verbosity is set to 1 by default and neither of us modified that.

Amolith picture Amolith on 25 Aug 2019
👍2

@Amolith do you have contact to Lelux.fi? Their SSL certificate has expired ~24 hours ago and I was pinged about this in our Matrix room.

Mikaela picture Mikaela on 14 Sep 2019

@Mikaela I do and I just sent him a message about it.

Amolith picture Amolith on 15 Sep 2019
1 👍1

@Mikaela He renewed the certificate a few hours ago.

Amolith picture Amolith on 15 Sep 2019
👍1

@privacytools/editorial I'm in favour of adding this.

freddy-m picture freddy-m on 23 Jan 2021
Was this page helpful?
0 / 5 - 0 ratings

Related issues

fabianski7 picture fabianski7  ยท  3Comments
jonaharagon picture jonaharagon  ยท  3Comments
0verk1ll picture 0verk1ll  ยท  3Comments
ghost picture ghost  ยท  3Comments
Echo1707 picture Echo1707  ยท  3Comments