DNSCrypt is a protocol that authenticates communications between a DNS client and a DNS resolver to prevent DNS spoofing. It uses cryptographic signatures to verify that responses originate from the chosen DNS resolver and haven't been tampered with.
The client side of DNSCrypt is a proxy to which regular DNS clients can connect. Instead of using your ISP's DNS settings, the client proxy translates regular DNS queries into authenticated DNS queries, forwards them to a server running the server DNSCrypt proxy, verifies the responses, and forwards them to the client if they appear to be genuine.
Note: Now requires OS X 10.10 or later
- Removes dependency that required a recent version of OpenSSL to be present on the system
- OS X 10.10 or later