No idea how this is on the front page, this is literally years-old news.
We haven't shown ads or done nxdomain redirection for more than two years.
We are, however, probably one of the best and easiest things you can do to raise the bar for user security on the Internet. We're also part of Cisco now[1].
I had to look at the page source to find that there was a meta tag for description stating "As of June 6, 2014, OpenDNS no longer shows ads to users." Unfortunately, there is no indication anywhere on the visible page about the year.
Three years ago I was at a place in India for a couple of months where OpenDNS was forced: the ISP literally intercepted all DNS queries and fed them through OpenDNS. The absence of NXDOMAIN was really annoying. It easily convinced me that I wouldn’t use OpenDNS by choice while they did that.
To me, this is actually “we’ve fixed the main reason to hate OpenDNS” rather than a new reason to love OpenDNS. I know that others there, non-technical others, also hated the behaviour.
Yes, it was absolutely horrible and to this day I don't consider using it because of how horrible it was back then.
From the other comments, I see that they actually stopped this horrible practice 2 years ago, and that this news is just out of date. But my thought is that I still wouldn't trust them with my DNS handling after making such a horrible move back then. It was such a major mistake that I have to worry they'll make other bone-headed decisions, too, and I just can't trust them with something that important.
So for you companies can never repent for their sins? I'd be interested in seeing the list of services you do use - I don't know many active companies that haven't had a bad idea somewhere down the line.
> The OpenDNS Guide was, until recently, a helpful tool. If the website you wanted to visit wasn’t loading, we took you to search results instead of an error page.
Why would anyone ever want to use a service that did that? I guess it's good that they're not doing that anymore, but that's really awful.
Well, nowadays in Chrome and probably some other browsers, Google is effectively doing that, i.e., showing suggestions when you make a typo in the address bar while typing.
Back when OpenDNS started doing it, most browsers couldn't do it.
Hacking NXDOMAIN was a workaround that also happened to pay their bills. It was never a particularly good decision, but we need to evaluate it from the point of view of what was or wasn't feasible 10 years ago.
Apparently bloggers consider this a feature, because they want the content that they are putting to be considered "evergreen", and seeing [2008] on a blog post makes a lot of people bounce right off and discount the whole thing. Well, that's the idea, anyway.
While this is old news and probably well-intenioned, I don't like anything being blocked out of my control. uBlock works great and shows me what's blocked.
This seems a reasonable thread to ask this: I found a weird dns server, conspiracy theory level. If you grok dns and would indulge me, send me an email :)
And here I was thinking OpenDNS was taking a brave, pioneering step: I thought this was going to be an announcement that they'd be blocking all ad networks at their end.
Let's say OpenDNS and Google changed their DNS servers to resolve all ad domains to 127.0.0.1.
It is a private choice to decide to use those DNS servers, but such a large percentage of the public uses them that this would no doubt impact nearly all ad networks and websites.
> It is a private choice to decide to use those DNS servers, but such a large percentage of the public uses them that this would no doubt impact nearly all ad networks and websites.
Those ad networks might even die off completely! And that'd just be terrible, really; however would people get by without being advertised at?
(Ideally you'd want the ad domains to not resolve at all, though, rather than resolving to localhost.)
I don't see how someone adjusting a service that they completely own and control to provide a more useful service would fall anywhere near a "line". That line is entirely drawn by the owners and operators of the service, and people can always choose to use a different service if they don't like that.
(That said, ad networks have sadly gotten sophisticated enough that DNS blacklists alone won't suffice, and could potentially break sites.)
That line is entirely drawn by the owners and operators of the service, and people can always choose to use a different service if they don't like that.
That's all well and good until whatever business you run competes with the DNS provider or offends them in some way and they stop resolving your domain name. You're not going to say, "well, people can stop using Google's DNS if they really want to use my service".
If a DNS provider does something they can't justify in the name of providing a better service, that makes it easier to convince people to use a different service.
Don't get me wrong, I hate ads. I use an ad blocker on all my devices. I have never served ads on any websites I've operated, and never will.
But love them or hate them, they're vital for many companies' and websites' revenue. If big tech companies started implementing anti-ad features by default, there would be chaos.
People don't like ads. Necessity is the mother of invention.
That said, any anti-ad features need to avoid breaking things for users, and it'd be entirely too easy to break a simplistic DNS-based ad-blocker in ways that would end up hurting users. Client-side ad blocking can take more sophisticated steps, both to deal with anti-adblocking technologies, and to give users feedback and recourses if something goes wrong.
> such a large percentage of the public uses them that this would no doubt impact nearly all ad networks and websites.
That would be the point wouldn't it ?
At this point, I'm surprised no one has picked up a sniper rifle and started systematically picking off the CEO of every single online ad agency one by one until no one wanted the job anymore. You know, maybe someone who has just a few months left to live and who wants to do something good for humanity before they leave.
I'm not saying someone should, just that it wouldn't surprise me if someone did.
If I'm not mistaken OpenDNS built their business on blocking websites at the DNS level for certain organizations. This is a "service" their customers paid for.
Redirecting "free" users to ads when they mistype domains was not a "neutral" move either.
No idea how this is on the front page, this is literally years-old news.
We haven't shown ads or done nxdomain redirection for more than two years.
We are, however, probably one of the best and easiest things you can do to raise the bar for user security on the Internet. We're also part of Cisco now[1].
1: https://newsroom.cisco.com/press-release-content?articleId=1...