Three simple steps to prevent DNS hijacking

I clearly entered the website address of a portal, but what opened up was a web game ad. I was browsing the Internet and suddenly I was transferred to a page full of "Recharge XX yuan to get a traffic package". Did I enter the wrong website address? Is there a virus or trojan? No, it might be DNS hijacking.

In the process of "entering the URL domain name → the web page is displayed normally", the most vulnerable part is the DNS resolution. If you do not specify a dedicated DNS server, the DNS server provided by the operator will be used by default for resolution.

For commercial interests, many small network operators will resolve the domain name of website A directly to website B, using this most rogue method to drive traffic to website B and make profits. This is why when we are surfing the Internet, we are often redirected to pages such as shopping, games, and activating Internet packages. In fact, it is the operator's DNS hijacking that is at work.

Since operators use their own DNS cache servers to hijack web browsing, can we not use the operator's DNS server? Of course! Here are three simple and practical methods for you.

Method 1: Install various computer managers or security protection software

The installation of various security protection software and computer managers is usually relatively simple. You only need to download the latest installation package from the official website and click "Next" to complete the installation and configuration process. This type of software usually has automatic startup and complete and comprehensive protection functions. The entry threshold is quite low, and even a "computer novice" can easily handle it.

During operation, these software usually automatically determine whether the current computer has been hijacked by the operator or other organizations' DNS. Once a possible hijacking behavior is detected, they can pop up a window to prompt and provide a one-click solution of "fix now". The entire experience process can be described as automated.

Advantages: simple installation, rich functions, reliable protection effect;

Disadvantages: It takes up system resources. Most security software comes with advertisements and is not easy to uninstall.

Method 2: Install various secure browsers

At present, most domestic Internet companies have launched their own secure browser products (or built-in security features in the browser), and preventing DNS hijacking is one of the many features of these secure browsers. Of course, since the developers of secure browsers are the same as those of PC Manager and Security Assistant, the installation of secure browsers is generally very convenient.

After installing a secure browser, you usually only need to open the browser's settings page. Under options such as "Advanced Settings" or "Security", you can find functions related to DNS protection. This function is also turned on by default in most secure browsers.

Advantages: The browser + security combination is simple and effective, and does not take up too much system resources after closing

shortcoming:

1. The browser's DNS security resolution uses encrypted DNS to avoid hijacking. The current mainstream technical means is to use the DoH protocol;
2. As a new technology, DoH introduces encryption and other mechanisms, which results in a longer response time for DNS resolution and instability.
3. Currently, the service providers that provide stable DoH in the market are mainly overseas, such as Google and Cloudflare, and access to them in China is unstable.

Method 3: Use a third-party DNS resolution server

Compared with the first two "curve-saving" solutions, this method can be said to be the most direct and lowest-cost method. Taking the current mainstream Windows 10 operating system as an example, users only need to follow the steps below.

Right-click the network icon in the lower-right corner of the desktop and click Open Network and Sharing Center.

In the interface that pops up, click the "Ethernet" button on the right side of the screen.

Click the "Properties" button in the lower left corner of the new window.

In the window that pops up, you need to first select the "Internet Protocol Version 4 (TCP/IPv4)" option in the middle window, and then click the "Properties" button below.

Finally, click "Use the following DNS server addresses", then enter "117.50.11.11" in the preferred DNS server and "117.50.22.22" in the alternate DNS server. Then click OK and close all windows.

To verify that the DNS is set up correctly, we only need to open the URL http://test.onedns.net/. As long as the browser displays "Malicious website blocked", it means that the current device has the ability to prevent being hijacked by the operator.

Advantages: No need to install additional software, does not occupy any system resources, one-time operation, lifelong worry-free Disadvantages: None

Seeing this, alert friends may ask, what are the origins of these two recommended DNS servers? It can't be another DNS hijacking trap!

In fact, these two servers are the OneDNS service launched by Weibu Online for the individual and home user market. OneDNS is a completely free public service. The server runs in the cloud and can ensure the response speed and quality of the service through the backbone network of operators across the country. Through advanced AI-based security technology and the rapid collection of massive threat information, OneDNS can fully identify malicious and phishing websites while providing basic DNS functions, protecting users' network security at the lowest cost.

In other words, with OneDNS, you don’t have to worry about operator hijacking, nor do you have to worry about all kinds of monsters on the Internet.

Why is OneDNS safe?

Weibu Online, which provides OneDNS services, is a cloud security service provider that focuses on the field of enterprise security and has strong technical capabilities. OneDNS is divided into Enterprise Edition and Home Edition. The Home Edition recommended in this article is not only completely free, but also fully inherits all the protection functions of the Enterprise Edition, except for the various monitoring and management functions in the enterprise environment.

Weibu Online operates the most active and largest security community in China, and is able to respond quickly to various security incidents and threats. The information obtained will be updated to all security products including OneDNS as soon as possible, ensuring that users can obtain "herd immunity" from the cloud at a faster speed.

It can be said that OneDNS is more like a public welfare project for the general public, which aims to improve the overall security level of the domestic network environment and allow the public to obtain better security protection services at a lower cost. Obviously, from the starting point of service, Weibu Online's OneDNS is already higher than other Internet products with similar functions.

With such technical strength and public spirit as endorsement, OneDNS will undoubtedly allow ordinary individuals and home users to use this service with greater confidence.