How you implemented NRD protection? @ph00lt0 Browser Plugin?
This is going very off topic so please next time create a new thread yourself.
But to answer your question. If you host your own DNS resolver like me or use something like NextDNS you can just opt block newly registered domains. This is a good measure against phishing websites and other unwanted stuff.
Surely we wouldnt advice you to install an add-on for it.
2 Likes
Please paste the relevant config.
I use OpenWrt DNS.
Easiest would be to just use PiHole or Adguard Home.
hagezi links to an external NRD blocklist that you can use with something like pi-hole.
EDIT: I think this is the same source NextDNS uses.
1 Like
This recent phishing attack would’ve been blocked had the author been using NRD protection: NPM debug and chalk packages compromised | Hacker News
NRD protection needs to become more widespread and easier to access.
1 Like
I have emailed Quad9 asking them to support this and this is their reply:
We are considering adding a new service (.13, perhaps) in the future which would include a 15 or 30-day NRD list, but that has its downsides, as it is not unheard of for large-scale services to register a domain in put it into service almost immediately, and that would add significant overhead on the Quad9 side for having to manage those exceptions on an ongoing basis.
2 Likes
While I totally believe you are right the moment NDR is more widely spread criminals will move on too. The real fix here is to move to passwordless authentication (f.x. passkeys) which is phishing resistant. I still urge to block NDR right now, it is a useful measure while passwords are still a thing.