I can’t call DNS blacklists part of defense in depth. DNS blacklists are a poor man’s version of existing and pre-installed anti-malware software.
DNS blacklists block only older known malware, similar to existing anti-malware, but less effective.
DNS blacklists block hijacked, but legit websites that host malware, contrary to existing anti-malware.
DNS blacklists? What is that? I use DoH, get fucked. Contrary to existing anti-malware.
They’re completely bypassable, they boast a high false positive rate due to how threat actors host malware, and they don’t even block newer malware. Just use Windows Defender. It ain’t perfect, but it’s leagues better than any DNS blacklist.
It’s part of defense in depth. No single piece will protect you from everything, so you you use multiple layers of protection.
I can’t call DNS blacklists part of defense in depth. DNS blacklists are a poor man’s version of existing and pre-installed anti-malware software.
They’re completely bypassable, they boast a high false positive rate due to how threat actors host malware, and they don’t even block newer malware. Just use Windows Defender. It ain’t perfect, but it’s leagues better than any DNS blacklist.