Even the site that considered safe in the megathread, there’s report of malware and trojan and I don’t know what site to use

      • FutileRecipe@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        It’s part of defense in depth. No single piece will protect you from everything, so you you use multiple layers of protection.

        • lukas@lemmy.haigner.me
          link
          fedilink
          English
          arrow-up
          0
          arrow-down
          2
          ·
          1 year ago

          I can’t call DNS blacklists part of defense in depth. DNS blacklists are a poor man’s version of existing and pre-installed anti-malware software.

          • DNS blacklists block only older known malware, similar to existing anti-malware, but less effective.
          • DNS blacklists block hijacked, but legit websites that host malware, contrary to existing anti-malware.
          • DNS blacklists? What is that? I use DoH, get fucked. Contrary to existing anti-malware.

          They’re completely bypassable, they boast a high false positive rate due to how threat actors host malware, and they don’t even block newer malware. Just use Windows Defender. It ain’t perfect, but it’s leagues better than any DNS blacklist.