P2P DNS with content key, crypto key and PKI support. DynDNS alternative.
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.

README.md

KadNode

KadNode is a small and decentralized DNS resolver that can use existing public key infrastructures. It utilizes the BitTorrent P2P network and mbedtls for TLS/crypto support.

KadNode can intercept .p2p domain queries on the systems level and resolve them using a decentralized DHT network. TLS authentication can be used to make sure the correct IP address was found. If successful, the IP address is passed to the application making the request.

Supported are also domains consisting of public keys represented as characters. :-)

Features:

  • IPv4/IPv6 support
  • Support for TLS authentication
    • Use CA browser chain and e.g. "Let's Encrypt" certificates for yourdomain.com(.p2p)
  • Support for ECC public key links as <public-hex-key>.p2p
    • No need to exchange any keys between clients and servers
  • UPnP/NAT-PMP support
  • local peer discovery
  • small size, ~85KB depending on features, ~35KB compressed
  • command line control program
  • NSS support through /etc/nsswitch.conf
  • DNS server interface and DNS proxy
    • handles A, AAAA, and SRV requests
  • packages for ArchLinux/Debian/FreeBSD/MacOSX/OpenWrt/Windows
  • peer file import/export on startup/shutdown and every 24h
  • uses sha256 hash method

Documentation

License

MIT/X11

Authors