User:DavidFilip/drawbacks dns

. Due to the fact that DNS packets usually are unencrypted UDP packets, DNS is highly vulnerable to packet interception. Anyone with the ability to intercept packets on a shared network is therefore able to send manipulated DNS packets. In addition, since the DNS Server is normally supplied by an ISP it would be easy to restrict access to certain domain names at this stage in the hierarchy.rfc3833 In some countries this is already being done to restrict access to file sharing sites.