Every time you visit a website, your machine have to contact a DNS server and get the IP of that site. When it comes to the web, every device have an IP address. If you want to go to that device, you need to get the IP of it. If you need to load a website, you need to get the IP of that website’s server. So, we have DNS servers to convert the web addresses into IPs.
But, if some one jumps to the middle of you and the DNS server to give you a false IP, he can direct you to a phishing or a malicious site. HTTPS will only secure the HTTP traffic. The DNS traffic is not protected until now…
Open DNS have just released a small free tool which will encrypt all the DNS traffic. So, no one can interfere with the DNS request. But, you have to use Open DNS as your dns server.
The tool is open source and still under development. So, it can have several bugs at the moment. I also faced a small irritating bug. If you have windows UAC enabled, then, every time you reboot your machine, your system will ask whether to allow DNSCrypt to do changes to the system.