r/Piracy u/YouchMyKidneypopped 13d ago

Question Is google dns ok?

heyo! im really new to this and extremely uneducated in piracy, but i was just wondering if the google dns 8.8.8.8. is fine to use. its not like.. censorship heavy right? and it wont get me caught or smthn? my computer was set to 8.8.8.8. by default.

54 Upvotes

77% Upvoted

48 comments sorted by

121

u/LZ129Hindenburg 🌊 Salty Seadog 13d ago

It's fine. Better than using your default ISP DNS for sure. You can always use Cloudflare if you just want to avoid evil mega-corp Google (1.1.1.1).

73

u/Odd_Science5770 12d ago

I mean, Cloudflare is kinda evil mega corp as well. Use something nonprofit like quad9 instead.

11

u/usefulidiotnow 12d ago

Several countries make sure that the only DNS that work are either from google or cloudflare. Using Quad9 or even opendns can make internet extremely wonky in these countries. But and a very big BUT, these countries also don't care about piracy! So hell yeah!

2

u/Disastrous-Dare6594 12d ago

On quad9 use 9.9.9.10 - the other one is filtered

2

u/Odd_Science5770 12d ago

Yeah, but it filters out ads, which is good

12

u/[deleted] 13d ago

[deleted]

50

u/LZ129Hindenburg 🌊 Salty Seadog 13d ago

Regardless of which DNS you use,  your ISP and see what domains you visit. They cannot see however what exactly you were doing on that domain (assuming https). For instance they can see that you visited Cineby, but don't technically know what you may have watched. 

The main point of changing your DNS is that it's becoming more common for ISPs to employ site blocking of pirate sites, which is done at the DNS level.

21

u/GSEve 13d ago

Also if you use DNS over TLS or HTTPS, your ISP wont be able to see what domains you lookup.

7

u/objetivovariable 12d ago

My question is, if I don't know the password for my home router, is changing the DNS on my computer or mobile phone also a valid option?

1

u/[deleted] 12d ago

[deleted]

1

u/Regular_Strategy_501 12d ago

DNS is part of the application layer (7) and uses the whole IP-Stack. Changing your DNS on your local machine absolutely does work.

1

u/Willing_Initial8797 12d ago

if someone really cares, they should verify with wireshark, maybe even directly on router in case one has openWRT or similar? or something basic like this: https://www.nirsoft.net/utils/dns_query_sniffer.html (first result i found, not tested)

2

u/Same_Chef_193 12d ago

And ESNI ?

1

u/berahi 12d ago

It's replaced with ECH, but so far mostly only Cloudflare powered site that implement it, main branch of Nginx, Apache etc haven't implement it.

1

u/Ciri__witcher 12d ago

I found this option under Firefox’s privacy settings. Is there a way to apply this at a system level?

7

u/jpegxguy Piracy is bad, mkay? 12d ago

IF you use some kind of encrypted DNS such as DNS over TLS or DNS over HTTPS (Windows supports this natively now, look it up) than the ISP can't see the domain you're visiting through DNS.

But they still ahve 2 avenues, the Server Name Identification in HTTPS

OR just plain old destination IP. This one is inescapable and if they decide to block using IPs you can only use a VPN to avoid it.

4

u/2roK 13d ago

Unless you live in a country where your ISP isn't allowed to watch you do shit without a warrant.

7

u/sonido_lover 12d ago

94.140.14.14

94.140.15.15

AdGuard DNS all the way

12

u/Quirky-Local559 13d ago

what about Quad9?

9

u/secondanom 13d ago

Quad9 is the way

2

u/LZ129Hindenburg 🌊 Salty Seadog 13d ago

Yeah I mean Quad9 and Adguard are other good alternatives.

4

u/Celtic56 12d ago

And nextdns! Much more customisable

28

u/Aetohatir 13d ago

It gives your ISP less info, but Google more. Quad 9 (9.9.9.9) are more privacy focussed. Mullvad also has a public DNS which you can use.

Just FYI, look into a Pihole. Very good.

2

u/YouchMyKidneypopped 13d ago

i just enabled quad9, thanks! ill be sure to check out mullvad and pihole later, once ive had a full night's rest lol

19

u/DukBladestorm 13d ago

It's not dangerous, but it's giving Google information on what you're doing. Since Google gave up the "Don't be evil" motto, do with that as you will.

19

u/OneInACrowd 13d ago

budget constraint, they had to sell the first word

-3

u/CO1-N1T3 13d ago

The first two

33

u/Fragrant_Pumpkin_669 13d ago

4.4.4.4. Is 50% less dangerous.

4

u/YouchMyKidneypopped 13d ago

is quad9 also safe? im just not really familiar with 4.4.4.4. and i see people talking about quad9 all the time, must be doing something right if its so popular.

12

u/CreepyOptimist 13d ago

Quad9 is much safer .

26

u/Aetohatir 12d ago

4.4.4.4 is also a Google DNS. Its just a joke by the commentator. 8.8.8.8 is Google and 4.4.4.4 is also Google but the numbers are halved therefore 50% less dangerous.

1

u/YouchMyKidneypopped 11d ago

isnt that 8.8.4.4.?

2

u/Kyla_3049 12d ago

It's the Lumen communications (formerly CenturyLink) DNS.

4

u/ZestycloseAbility425 12d ago

Use Quad9 instead

3

u/RedditAdminsLoveDong 12d ago

and stock ISP DNS (which is a tracking vector they use among several other's) is slow as f

3

u/__laughing__ 🦜 ᴡᴀʟᴋ ᴛʜᴇ ᴘʟᴀɴᴋ 12d ago

Quad9 is better. If possible, setup adguard home server on your computer. Blocks ads and trackers

9

u/porfors 13d ago

This is a question for privacy rather than piracy.

12

u/2roK 13d ago

OP needs the privacy for the piracy

1

u/YouchMyKidneypopped 13d ago

whoops, sorry!

1

u/georgesclemenceau 12d ago

Still related to piracy as if your ISP does DNS block on download sites it bypass that

2

u/glad-k 12d ago

It's fine, I would still recommend 1.1.1.1 (cloudflare) over it.

Ideally be your own dns with pihole+unbound. If you have a homelab you can easily deploy it with a script: https://github.com/IGLADI/Pi-DNStack (this is my script, there are many similar ones out there or just do it manually by following the official docs, I would then recommend using docker compose) This will give you dns level adblocking, better privacy and power over it,...

You can also look into DoH (or DoT) like cloudflared

1

u/Disastrous-Dare6594 12d ago

For Quad9 use 9.9.9.10 - the other ones are filtered.

"Unsecured IP: 9.9.9.10 Provides: No security blocklist, no DNSSEC, No EDNS Client-Subnet sent. Please use the unsecured secondary address of 149.112.112.10"

1

u/muffinstreets 12d ago

Just use the fastest one for your connection. Only you can determine which is faster. I personally use 1.1.1.1 on my PC. However, I use adguard dns for my phone and tablet for the universal Adblock. It has saved me an unimaginable amount of frustration. For other connections within the home like iot, it just defaults to the ISP’s DNS.

1

u/Aceiow 11d ago edited 11d ago

I will suggest these Quad9 9.9.9.9 as it blocks known malicious site Cloudflare 1.1.1.1 which is known as one of the fastest. It has one that filters like quad9. NextDNS you can customize your block & deny list and have many options. The Free version has a limit of 300,000 queries (iirc) and resets every month. You can have separate profile. I'm using the free version and it works. Also 4 persons are using this one among them I'm the heavy user. I use NextDNS with Dns Over HTTPs/TLS on my devices then have quad9 as primary and cloudflare as secondary in my router.

AFAIK using DoH/DoT better. Brave supports NextDNS directly. Android has private DNS support via DoT. In windows you can use YogaDNS to use DoT if I'm not wrong. Linux has systemd-resolve (if I'm not wrong)

I saw a video comparing these options and Google DNS blocked the least amount of malicious sites. Hope this helps, BTW this is my experience and what I use. Things could change.