In-GUI note on OpenDNS support for DNSSEC

cliquot · July 31, 2020, 1:30pm

CONTEXT:

In the pihole GUI, under Settings > DNS, there is this instruction WRT DNSSEC: "Use Google, Cloudflare, DNS.WATCH, Quad9, or another DNS server which supports DNSSEC when activating DNSSEC."

FEATURE REQUEST:

Now that OpenDNS supports DNSSEC (per https://support.opendns.com/hc/en-us/articles/360039659971-DNSSEC-General-Availability) and OpenDNS is featured prominently in the GUI already, the in-GUI instruction should state something like: "Use Google, OpenDNS, Cloudflare, DNS.WATCH, Quad9, or another DNS server which supports DNSSEC when activating DNSSEC."

VALIDATION:

I've successfully tested this myself, as per the attached screenshot, using Pi-hole's recommended test at https://dnssec.vs.uni-due.de/

yubiuser · July 31, 2020, 8:25pm

So you basically ask to change the description "OpenDNS (ECS)" to "OpenDNS (ECS, DNSSEC)"?

cliquot · July 31, 2020, 8:51pm

Yes, that a is good idea. As well, recommend changing the copy in the DNSSEC section of that page, as previously noted.

yubiuser · November 24, 2020, 8:07pm

github.com/pi-hole/AdminLTE

Summarize the names of DNS servers which support DNSSEC

pi-hole:devel ← yubiuser:tweak/description_DNS_servers

opened 08:06PM - 24 Nov 20 UTC

yubiuser

+1 -2

- [x] I have read and understood the [contributors guide](https://github.com/pi-…hole/AdminLTE/blob/master/CONTRIBUTING.md), as well as this entire template. - [x] I have made only one major change in my proposed changes. - [x] I have commented my proposed changes within the code. - [x] I have tested my proposed changes. - [x] I am willing to help maintain this change if there are issues with it later. - [x] I give this submission freely and claim no ownership. - [x] It is compatible with the [EUPL 1.2 license](https://opensource.org/licenses/EUPL-1.1) - [x] I have squashed any insignificant commits. ([`git rebase`](http://gitready.com/advanced/2009/02/10/squashing-commits-with-rebase.html)) - [x] I have Signed Off all commits. ([`git commit --signoff`](https://git-scm.com/docs/git-commit#Documentation/git-commit.txt---signoff)) --- **What does this PR aim to accomplish?:** Simplifies and summarized the names of the upstream DNS servers that allow DNSSEC. If more servers support DNSSEC in the future the text doesn't need to be changed again. Should go along with https://github.com/pi-hole/pi-hole/pull/3863.

github.com/pi-hole/pi-hole

Add DNSSEC info to OpenDNS description

pi-hole:development ← yubiuser:tweak/OpenDNS_decription

opened 08:06PM - 24 Nov 20 UTC

yubiuser

+1 -1

- [x] I have read and understood the [contributors guide](https://github.com/pi-…hole/pi-hole/blob/master/CONTRIBUTING.md), as well as this entire template. - [x] I have made only one major change in my proposed changes. - [x] I have commented my proposed changes within the code. - [x] I have tested my proposed changes, and have included unit tests where possible. - [x] I am willing to help maintain this change if there are issues with it later. - [x] I give this submission freely and claim no ownership. - [x] It is compatible with the [EUPL 1.2 license](https://opensource.org/licenses/EUPL-1.1) - [x] I have squashed any insignificant commits. ([`git rebase`](http://gitready.com/advanced/2009/02/10/squashing-commits-with-rebase.html)) Please make sure you [Sign Off](https://github.com/pi-hole/pi-hole/wiki/How-to-signoff-your-commits.) all commits. Pi-hole enforces the [DCO](https://github.com/pi-hole/pi-hole/wiki/Contributing-to-the-project). --- **What does this PR aim to accomplish?:** Adds info that OpenDNS supports DNSSEC now. https://support.opendns.com/hc/en-us/articles/360039659971-DNSSEC-General-Availability https://discourse.pi-hole.net/t/in-gui-note-on-opendns-support-for-dnssec/36500 **How does this PR accomplish the above?:** Just change the description **What documentation changes (if any) are needed to support this PR?:** No.

yubiuser · November 28, 2020, 8:01pm

Released with Pi-hole Core/Web v5.2 and FTL v5.3 released!