Discussions

My ISP: “We recommend strongly against changing your DNS servers to ones that do not perform DNSSEC validation in order to attempt to access the domain name which has failed DNSSEC validation. Such a failure can indicate a possible security problem that could result in your computer being infected with malware, your login credentials for a site being compromised, and other security problems. While some third party DNS servers do not currently perform DNSSEC validation, performing such security validation is a best practice. Any DNS server operators not yet performing DNSSEC validation now will likely do so soon, since this is a global security standard.”

My question is, does control D perform DNSSEC validation if you don’t disable it in the configuration settings, and is everything safe and encrypted as it would be with like Quad9 or cloudflare using DNS over HTTPS? I am not network literate, so please bear with me.