From 601bd3ac86e9882aceb88939b0f3ea4730543ce8 Mon Sep 17 00:00:00 2001
From: Mikaela Suomalainen <mikaela+git@mikaela.info>
Date: Sat, 17 Aug 2019 00:52:41 +0300
Subject: [PATCH] unbound dot: alphabetical order

Ref: #15
---
 etc/unbound/unbound.conf.d/dns-over-tls.conf | 32 ++++++++++++++------
 1 file changed, 23 insertions(+), 9 deletions(-)

diff --git a/etc/unbound/unbound.conf.d/dns-over-tls.conf b/etc/unbound/unbound.conf.d/dns-over-tls.conf
index cc896875..82baa7c4 100644
--- a/etc/unbound/unbound.conf.d/dns-over-tls.conf
+++ b/etc/unbound/unbound.conf.d/dns-over-tls.conf
@@ -13,7 +13,7 @@ forward-zone:
     name: "."
     forward-tls-upstream: yes
 
-    ## DNS-over-TLS on port 443, no non-malicious filtering
+    ## DNS-over-TLS on port 443, no filtering
 
     # https://appliedprivacy.net/services/dns/
     forward-addr: 37.252.185.232@443#dot1.appliedprivacy.net
@@ -24,14 +24,7 @@ forward-zone:
     forward-addr: 116.203.35.255@443#uncensored-dot.dnswarden.com
     forward-addr: 116.203.70.156@443#uncensored-dot.dnswarden.com
 
-    ## DNS-over-TLS on port 853
-
-    # Quad9 - warning: uncommenting others simultaneously will break
-    # malicious domain blocking.
-    forward-addr: 2620:fe::fe@853#dns.quad9.net
-    forward-addr: 9.9.9.9@853#dns.quad9.net
-    forward-addr: 2620:fe::9@853#dns.quad9.net
-    forward-addr: 149.112.112.112@853#dns.quad9.net
+    ## DNS-over-TLS on port 853, no filtering
 
     # censurfridns.dk (Copenhagen?)
     forward-addr: 2001:67c:28a4::@853#anycast.censurfridns.dk
@@ -44,6 +37,18 @@ forward-zone:
     forward-addr: 2606:4700:4700::1001@853#cloudflare-dns.com
     forward-addr: 1.0.0.1@853#cloudflare-dns.com
 
+    # https://securedns.eu/
+    # TODO
+
+    ## Malicious domain filtering
+
+    # Quad9 - warning: uncommenting others simultaneously will break
+    # malicious domain blocking.
+    forward-addr: 2620:fe::fe@853#dns.quad9.net
+    forward-addr: 9.9.9.9@853#dns.quad9.net
+    forward-addr: 2620:fe::9@853#dns.quad9.net
+    forward-addr: 149.112.112.112@853#dns.quad9.net
+
     # AdBlocking DNS
 
     # AdGuard DNS - warning: for-profit business which task is to lie (to
@@ -51,6 +56,15 @@ forward-zone:
     #forward-addr: 176.103.130.130@853#dns.adguard.com
     #forward-addr: 176.103.130.131@853#dns.adguard.com
 
+    # BlahDNS
+    # TODO
+
+    # DNSWARDEN
+    # TODO
+
+    # SecureDNS
+    # TODO
+
     ## Hopefully in the future
 
     # DNS.WATCH (German) - PROBLEM: NO DOT AS OF 2019-07-22 but in hope