OpenDNS Redux
June 28th, 2007 · by David Bradley
You may recall I discussed OpenDNS, a 3rd party DNS server that is very easy to setup and generally works much faster than your ISP’s DNS servers. It also has several advantages such as “adult” filtering and simple site blocking based on various criteria. The filtering is done by St Bernard’s iGuard Software, in case you are wondering.
Well, I have a confession to make, I never actually got OpenDNS to work on my SOHO network. I got it up and running on my laptop at a colleague’s premises using an ADSL connection. However, it niggled me that I couldn’t get it to work for my SOHO, so I did some digging to find out whether my ISP was somehow blocking the use of 3rd party DNS. First hit that came up referenced my cable ISP (UK’s VirginMedia, formerly ntl) as blocking OpenDNS and other related systems. So, I contacted OpenDNS and asked them whether anything could be done. They said they were aware of several users with the same ISP who were having problems and suggested I might fare better contacting the ISP direct.
So, I donned my journalist’s hat and called the ISP’s press office, mentioning that I was hoping to review OpenDNS again and would have to cite their name should it turn out that they were indeed blocking this service. They got back to me within the hour. Told me that they block no 3rd party DNS servers and that it could simply be a technical glitch. They asked for my IP address, which I duly handed over, and they got back to me again within minutes to say the glitch was resolved. Now, there’s service. My contact at VirginMedia also sent an official response to my concerns, which I had raised on the OpenDNS blog, so watch out for the follow up over there too.
So, now I can, hand on heart say that OpenDNS is working in my SOHO, and not just when I’m at my business associate’s premises with a laptop.
However, another issue has since arisen as I have dug deeper into DNS. Christopher Soghoian voiced concerns about a purportedly lax privacy policy at OpenDNS. So, I contacted OpenDNS again and asked them to tell me whether they intended to tighten up their protocols so that their users’ personal details and surfing habits would not be open to abuse. They too responded very quickly alerting me to an open comment from OpenDNS CEO David Ulevitch on Soghoian’s post in which he states “We are absolutely, unquestionably and unequivocally uninterested in collecting personally identifiable information on you.” He adds that privacy policy changes are already underway to tighten up data protection for users of OpenDNS, which is very reassuring to know. Of course, if you have read the privacy policy of your ISP you will be tapping in the DNS IP addresses into your router right now and making the switch to OpenDNS.
Science News
Join me on StumbleUpon
My Facebook Page
Flickr Photos
My Twitter microblog
Network with me on LinkedIn
My reading list
Sig Figs Calc
Tech Jobs
6 responses so far ↓
I received a personal response from OpenDNS CEO David Ulevitch, which I quote below:
“Thanks for helping us with NTL, that’s fantastic news. We are absolutely addressing the privacy policy issues. When the policy was first written our lawyers encouraged us to leave some parts a bit vague since we were not yet clear on what we were doing with data. We are clear now and the reality is that our practices are FAR TIGHTER and our philosophies are far more protective of users than what is outlined in the policy. A new privacy policy will be in place to better reflect what our actual practices are (which is to NOT store data or use it to mine information against users). We’re hoping to have it live at the end of the week (and have had this on our radar for some time) but it’s most likely going to go live sometime next week. I think it’s absolutely critical we explain what data we collect and how we use that data to users. Even more important than that is to allow users to manage the data we store. If you don’t want stats and insights into your DNS traffic we should not be keeping any personally identifiable data.”
I also had a short note from John Roberts
VP of Product, at OpenDNS, who pointed out that:
“I can almost guarantee that our privacy policy updates won’t be live [by the time your post appears]. More important to do it right than fast… although our timeline is imminent.”
Hi David
Glad the problem’s sorted!
Cheers
Alex
Virgin Media
Yes, working perfectly now, Alex. Thanks for your help with this
Hi
Wanted to make sure you saw our new privacy policy at OpenDNS.
http://blog.opendns.com/2007/07/23/privacy-policy-update/
Cheers,
John
Thanks John,
It does look like the privacy issues highlighted on this post have now been addressed. I note particularly the par:
“How do we know what’s in your best interests? We don’t…so we give you control over any DNS data we collect. You can tell us to keep it (for the detailed insights and charts) or you can tell us to purge it. You can even tell us not to store it at all. We know that for most of you, keeping logs about your DNS traffic (which, again, we won’t ever sell) provides you a greater experience and quality of service.”
Good news!
db
OpenDNS has updated its block categories system, now much more flexible and includes on-the-fly blocking of specific no-go areas of the web.
db
Leave a Comment