Your computer asks a DNS server where to find a website, and unless you’ve made changes to your settings, that request goes out in plain text. This can be seen by any system it passes through. DNS is like the internet’s phone book, translating data into numerical IP addresses to connect you to the correct website.
Traditional DNS requests are not secure, making it vulnerable to interception by hackers or internet service providers (ISPs). To address this issue, encrypted DNS methods have been developed, such as DNS over HTTPS and DNS over TLS. These methods provide strong protection against snooping and tampering with your DNS requests.
One popular option is NordVPN, which offers fast and easy-to-use VPN services compatible with various devices. Another option is ExpressVPN Aircove Router, a router that delivers built-in VPN protection for everything on your network.
To enable encrypted DNS over HTTPS in Windows 11, follow these steps:
1. Open Settings > Network & Internet.
2. Find the DNS server assignment edit button and click it.
3. Enter the IP address of your DNS provider (e.g., Google’s 8.8.8.8).
4. Choose the “On (automatic template)” setting in the DNS over HTTPS dropdown menu.
5. Save and you’re done.
Encrypting your DNS is a high-impact, low-effort improvement that protects your data from being seen by ISPs or hackers. It adds an extra layer of protection when using Wi-Fi on untrusted networks and keeps your browsing habits private.
Source: https://www.howtogeek.com/the-overlooked-windows-privacy-upgrade-that-just-works