Skip to main content

Is dnspod.com a Scam? Security Check Results - DNSPod, Inc. Reviews

dnspod.com favicon

Is dnspod.com Safe? Security Analysis for DNSPod, Inc.

https://dnspod.com

Check if dnspod.com is a scam or legitimate. Free security scan and reviews.

TechnologyChinalarge
JavaScriptTencent Cloud CDNAegis RUM monitoringGoogle AnalyticsBaidu Analytics+1 more
Analyzed 8/2/2025Completed 6:29:53 PM
68
Security Score
MEDIUM RISK

AI Summary

DNSPod is a well-established Chinese DNS service provider specializing in free and paid intelligent DNS resolution services. The company positions itself as the largest free DNS resolver in China, offering multiple service tiers tailored to individuals, small businesses, and large enterprises. Their services include DNS resolution, API integration, SSL certificates, and lightweight application servers, supported by a robust global Anycast network and strong DDoS protection. The website is professionally designed, mobile-optimized, and integrates modern analytics and monitoring tools, reflecting a mature digital infrastructure. Technically, DNSPod leverages Tencent Cloud's CDN and hosting infrastructure, uses JavaScript frameworks, and employs real user monitoring (Aegis) alongside Google and Baidu analytics. The site demonstrates good performance, accessibility, and SEO practices. However, explicit security headers are not detected, and no cookie consent mechanism is present, which are areas for improvement. From a security perspective, the site enforces HTTPS and uses advanced DDoS mitigation. No obvious vulnerabilities or exposed sensitive data were found. The absence of WHOIS data for the domain is unusual and reduces trust slightly, though the overall professional presence and Tencent Cloud affiliation mitigate concerns. Privacy and terms policies are comprehensive and GDPR compliant, but direct contact information and a dedicated security policy are missing. Overall, DNSPod presents a strong business and technical profile with minor gaps in transparency and security best practices. Strategic improvements in security headers, contact transparency, and cookie consent would enhance trust and compliance.

Detected Technologies

JavaScriptTencent Cloud CDNAegis RUM monitoringGoogle AnalyticsBaidu AnalyticsWeChat JS SDK

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

DNSPod operates in the technology sector, focusing on DNS and domain-related services. It holds a leading market position in China as the largest free DNS resolver provider, supported by Tencent Cloud. The business model combines free offerings with tiered paid plans, targeting a broad audience from individual users to large enterprises. Revenue streams likely include subscription fees for professional and enterprise DNS services and SSL certificate sales. The company benefits from a strong partnership ecosystem, notably Tencent Cloud, enhancing its service reliability and reach. Growth indicators include a large user base (millions of customers and domains served) and continuous service expansion. The website's multilingual and global orientation suggests ambitions beyond China. Strategic observations include the need for improved transparency in WHOIS data and enhanced security communication to maintain competitive advantage and trust.

Security Posture Analysis

Comprehensive Security Assessment

DNSPod demonstrates a mature security posture with enforced HTTPS, high availability SLAs, and robust DDoS protection capabilities exceeding 5Tbps. The use of Tencent Cloud infrastructure and real user monitoring tools indicates proactive performance and security management. However, the absence of explicit security headers (e.g., CSP, HSTS) and lack of published incident response or security contact information represent gaps. Privacy policies are comprehensive and GDPR compliant, but cookie consent mechanisms are missing, which may affect compliance in certain jurisdictions. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The missing WHOIS data for the domain is a concern for transparency but does not directly impact technical security. Overall, DNSPod's security posture is strong but could be improved by adopting additional best practices and enhancing transparency.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement and publish explicit HTTP security headers such as Content-Security-Policy, Strict-Transport-Security, X-Content-Type-Options, and X-Frame-Options to strengthen browser security.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

DNSPod, Inc.

Description:

DNSPod是国内提供智能DNS产品的网站,致力于为各类网站提供高质量的电信、网通、教育网双线或者三线智能DNS免费解析。目前DNSPod已经是国内最大的免费DNS解析产品提供商

Key Services:
免费DNS解析服务专业版DNS服务企业版DNS服务旗舰版DNS服务API接口SSL证书轻量应用服务器
Content Quality:

excellent

Branding:

consistent

Technical Stack

Technologies:
JavaScriptTencent Cloud CDNAegis RUM monitoringGoogle AnalyticsBaidu AnalyticsWeChat JS SDK
Frameworks:
Tea UI (Tencent internal UI framework)
Platforms:
Tencent Cloud
Performance:

fast

Mobile:

good

Accessibility:

good

SEO:

good

Security Assessment

Security Score:
85/100
Best Practices:
  • HTTPS enforced
  • No exposed sensitive data in HTML
  • Use of RUM monitoring for performance and error tracking
  • No visible vulnerable libraries

Analytics & Tracking

Services:
Google AnalyticsBaidu AnalyticsTencent Aegis RUM
Tracking Level:moderate
Privacy Compliance:basic

Advertising & Marketing

Ad Networks:
Google AdsBaidu Ads
Tracking Pixels:
Baidu Analytics
Marketing Tools:
WeChat JS SDK
Transparency Level:good

Website Quality Assessment

Design Quality:excellent
User Experience:excellent
Content Relevance:excellent
Navigation Clarity:excellent
Professionalism:excellent
Trustworthiness:high

Key Observations

1

Website is fully accessible with rich content and professional design

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

65/100
Score

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

68/100
Score

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

No Data Protection Officer mentioned

LOW

Large organizations may need to designate a DPO under GDPR

Privacy policy may not be GDPR compliant

MEDIUM

Privacy policy lacks explicit GDPR compliance elements

GDPR Compliance Analysis

Privacy Policy85% confidence
Cookie Policy85% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100
Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 include:spf.mail.qq.com ~all
DNS Lookups:1/10
Policy:~all

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

80/100
Score

Weak SSL Key Length

HIGH

SSL certificate uses 256-bit key, which is considered weak

Partial SSL/TLS Assessment

LOW

Completed 2 of 4 security checks due to time constraints

Certificate Details

Subject:*.dnspod.com
Issuer:DNSPod ECC OV
Valid Until:2/22/2026 (204 days)
SANs:*.dnspod.com, dnspod.com

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

Domain Registration Details

Domain Age
19 years(mature)
Expiry Risk
none(3123 days)
Protection Level
strongDNSSEC OFF

DNS Records

A Records:43.159.104.94
Name Servers:
ult01.dnspod.com
ult02.dnspod.com
MX Records:
5: mxbiz1.qq.com
10: mxbiz2.qq.com
SOA:Serial: 1727084439, TTL: 180s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:270ms

SPF Analysis

SPF Record:
v=spf1 include:spf.mail.qq.com ~all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is hosted on Tencent Cloud and uses their CDN for static assets, ensuring fast global delivery. The tech stack includes JavaScript frameworks and Tencent's Tea UI framework, with integration of Google Analytics, Baidu Analytics, and Tencent's Aegis RUM for monitoring. The site is well-structured with proper meta tags, multilingual support, and mobile optimization. Performance is fast with no visible errors or broken elements. However, the absence of explicit security headers and cookie consent mechanisms indicates areas for technical improvement. The WHOIS data absence suggests potential domain registration privacy or misconfiguration, which should be addressed to reduce risk. Overall, the technical implementation is modern and robust but could benefit from enhanced security configurations and transparency.
Analyze Another Website