Cloudflare and Quad9 Aim to Improve DNS
Cloudflare and
Quad9 offer public DNS servers that
provide a combination of verification, privacy-focused protocols, and
encryption to mitigate DNS's leaks and flaws.I'll cut to the chase to tell you how to configure your devices to use
these services before getting into the nitty-gritty of how DNS works
and how these services improve on an insecure and easy-to-corrupt
design
(Via TidBITS)
Go to the article for the how, but …
For the different services, the IP addresses to enter are: Cloudflare:
1.1.1.1 and 1.0.0.1 (see note below) Google Public DNS: 8.8.8.8 and 8.8.4.4 Quad9: 9.9.9.9 and 149.112.112.112
The last 60% of the article is a solid, easy to understand write up on DNS and how Quad9 and Cloudflare (and, to a lesser extent, Google) are trying to address inherent issues and risks them without a complete redesign (see the last section in the article).
Nevertheless, every step you take toward greater security and privacy is a positive one. It's important to think about where your data ends up, and only you can decide whether having your queries available to Cloudflare, Google, or Quad9 is an improvement over your existing exposure to your ISP, which may not employ any of the above mitigations.
Full Disclosure: I work for IBM, a founding member of Quad9.
Also on: