0druid.cc

public DNS • DoT • NTP/NTS • Debian 13 • 23.191.184.49 • 0druid.cc • 0druid.cc

services

DNS resolver port 53

Ad/malware blocking via dnsmasq (2.9M blocked domains). Forwards to Unbound recursive resolver. DNSSEC validated. No query logging. Plaintext.

DNS recursive port 5335

Unbound recursive resolver — queries root servers directly. DNSSEC, QNAME minimisation, no forwarding. No query logging. Plaintext.

DNS-over-TLS port 853

Post-quantum TLS 1.3 (X25519MLKEM768). Encrypted DNS with ad/malware blocking (via dnsmasq). No session tracking.

DNS-over-TLS (raw) port 8535

Post-quantum TLS 1.3 (X25519MLKEM768). Encrypted recursive DNS with no blocking. No session tracking.

NTP / NTS port 123 + 4460

Network Time Security. Encrypted time sync with post-quantum AEAD-AES-256-GCM. NTS-KE on port 4460. Public server.

HTTPS port 443

Post-quantum TLS 1.3 (X25519MLKEM768). HSTS, no cookies, no scripts, no logging. This page. Serves wiki, diagnostics, privacy policy.

SSH port 3447

Post-quantum key exchange (mlkem768x25519-sha256). Ed25519-only host key. Key-only auth. No forwarding.


codeberg email matrix pgp xmr