DNSSEC/DANE Validator
Validate DNSSEC & DANE using DoH
What is DNSSEC/DANE Validator?
Stats
Other platforms
Summary
Unlike other similar implementations DNSSEC/DANE Validator will not query any arbitrary 3rd party API services but simply uses DNS over HTTPS.
You can use any DoH server supporting DNSSEC, either one of the preconfigured or any custom server, including your own.
Also validates DANE as long as a) at least one TLSA record is present and b) the record(s) are DNSSEC secured.
DNSSEC/DANE status is displayed in the address bar along with a popup containing further info (not available on Android)
Possible statuses: White open lock: Not tested, host is either local or hidden service Yellow open lock: Host doesn't support DNSSEC Red open lock: DNSSEC is invalid Orange unlocked lock: Host is DNSSEC secured but DANE failed Green closed lock: Host is DNSSEC secured Green key: Host is DNSSEC secured and DANE valid (DANE status is displayed in the popup including usage and issuer common name)
User reviews
Safety
Risk impact
DNSSEC/DANE Validator is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install DNSSEC/DANE Validator if you trust the publisher.
Risk likelihood
DNSSEC/DANE Validator may not be trust-worthy. Avoid installing if possible unless you really trust this publisher.