Textpattern CMS support forum

You are not logged in. Register | Login | Help

#1 2019-07-08 07:27:56

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,382
Website

DNS-over-HTTPS

I’ve read much about the move to DoH from Mozilla which can already be enabled in FF. Does anybody have any experience with it?


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | Respbublika! | NeMe @ github

Offline

#2 2019-07-08 13:37:25

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,214
Website

Re: DNS-over-HTTPS

I’ve used it on Bromite – a Chrome Fork for Android. I don’t really notice any difference.

We’ve been having a lot of discussions this week about how the DNS community brought DoH on themselves. It was just so slow to react. It didn’t see it coming, and now it is kind of too late: DNS currently feels quite fragile and people have been adding complexity. As a result, there has been a big space left in here and the browsers are just walking straight in, because if they were already getting what they needed from DNS, they might be less eager to go down the DoH route. However, they are just not getting what they need, and I think they kind of feel they never will. – The DNS community brought DNS over HTTPS on itself

There is also a competing standard DNS over TLS which seems to be getting less press coverage.

Offline

#3 2019-07-08 17:01:19

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,382
Website

Re: DNS-over-HTTPS

What worried me re enabling it on FF was that all connections would go through Cloudflare whom they are yet to convince me regarding their policies.


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | Respbublika! | NeMe @ github

Offline

#4 2019-07-08 19:16:48

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,214
Website

Re: DNS-over-HTTPS

colak wrote #318658:

What worried me re enabling it on FF was that all connections would go through Cloudflare whom they are yet to convince me regarding their policies.

Bromite lets you choose between Google, Cloudflare, and Quad9.

Perhaps someday everyone will have a home dns server.

Offline

#5 2019-07-09 08:29:36

phiw13
Plugin Author
From: Japan
Registered: 2004-02-27
Posts: 1,761
Website

Re: DNS-over-HTTPS

Somewhere in the archives of the forum there is fairly recent thread which contains some mention of this feature. Someone (Michael ?) mentioned that you could configure a custom server. I couldn’t find it in a quick search though.

I haven’t used it, no. Cloudflare and my dislike of centralised systems are 2 reasons for that. (I am, for the same reason, less and less enamoured with LetsEncrypt. I still use it, more due to the ease of use and the lack of alternative).

Last edited by phiw13 (2019-07-09 08:30:01)

Offline

#6 2019-07-09 12:52:00

gaekwad
Admin
From: People's Republic of Cornwall
Registered: 2005-11-19
Posts: 2,633

Re: DNS-over-HTTPS

phiw13 wrote #318661:

I am, for the same reason, less and less enamoured with LetsEncrypt.

Other ACME providers are out there. Same client, different API endpoint. I trialled BuyPass for a bit, but ran into trouble with OCSP stapling.

Offline

#7 2019-07-09 12:53:57

gaekwad
Admin
From: People's Republic of Cornwall
Registered: 2005-11-19
Posts: 2,633

Re: DNS-over-HTTPS

phiw13 wrote #318661:

Somewhere in the archives of the forum there is fairly recent thread which contains some mention of this feature.

This is the list I use: github.com/curl/curl/wiki/DNS-over-HTTPS#publicly-available-servers

Offline

#8 2019-07-09 18:26:34

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 7,382
Website

Re: DNS-over-HTTPS

gaekwad wrote #318666:

This is the list I use: github.com/curl/curl/wiki/DNS-over-HTTPS#publicly-available-servers

Cool!! Thanks Pete.


Yiannis
——————————
neme.org | hblack.net | LABS | State Machines | Respbublika! | NeMe @ github

Offline

Board footer

Powered by FluxBB