Also any idea how to best integrate with DNSCrypt?
(Use DNSCrypt by default in Kicksecure? (not Whonix!))
Kicksecure DNS should be functional without DNSCrypt.
But then if a DNSCrypt-enable package gets installed, it should drop the required config files to make enable DNSCrypt.
Enabling DNSCrypt is currently part of package kicksecure-network-conf.
Can you make head or tail of this package?
And do you think you could implement these improved networking configuration?