Go to main content

Textpattern CMS support forum

You are not logged in. Register | Login | Help

#1 2019-07-08 07:27:56

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,007
Website GitHub Mastodon Twitter

DNS-over-HTTPS

I’ve read much about the move to DoH from Mozilla which can already be enabled in FF. Does anybody have any experience with it?


Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

#2 2019-07-08 13:37:25

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,379
Website GitHub Mastodon

Re: DNS-over-HTTPS

I’ve used it on Bromite – a Chrome Fork for Android. I don’t really notice any difference.

We’ve been having a lot of discussions this week about how the DNS community brought DoH on themselves. It was just so slow to react. It didn’t see it coming, and now it is kind of too late: DNS currently feels quite fragile and people have been adding complexity. As a result, there has been a big space left in here and the browsers are just walking straight in, because if they were already getting what they needed from DNS, they might be less eager to go down the DoH route. However, they are just not getting what they need, and I think they kind of feel they never will. – The DNS community brought DNS over HTTPS on itself

There is also a competing standard DNS over TLS which seems to be getting less press coverage.

Offline

#3 2019-07-08 17:01:19

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,007
Website GitHub Mastodon Twitter

Re: DNS-over-HTTPS

What worried me re enabling it on FF was that all connections would go through Cloudflare whom they are yet to convince me regarding their policies.


Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

#4 2019-07-08 19:16:48

michaelkpate
Moderator
From: Avon Park, FL
Registered: 2004-02-24
Posts: 1,379
Website GitHub Mastodon

Re: DNS-over-HTTPS

colak wrote #318658:

What worried me re enabling it on FF was that all connections would go through Cloudflare whom they are yet to convince me regarding their policies.

Bromite lets you choose between Google, Cloudflare, and Quad9.

Perhaps someday everyone will have a home dns server.

Offline

#5 2019-07-09 08:29:36

phiw13
Plugin Author
From: Japan
Registered: 2004-02-27
Posts: 3,058
Website

Re: DNS-over-HTTPS

Somewhere in the archives of the forum there is fairly recent thread which contains some mention of this feature. Someone (Michael ?) mentioned that you could configure a custom server. I couldn’t find it in a quick search though.

I haven’t used it, no. Cloudflare and my dislike of centralised systems are 2 reasons for that. (I am, for the same reason, less and less enamoured with LetsEncrypt. I still use it, more due to the ease of use and the lack of alternative).

Last edited by phiw13 (2019-07-09 08:30:01)


Where is that emoji for a solar powered submarine when you need it ?
Sand space – admin theme for Textpattern

Offline

#6 2019-07-09 12:52:00

gaekwad
Server grease monkey
From: People's Republic of Cornwall
Registered: 2005-11-19
Posts: 4,134
GitHub

Re: DNS-over-HTTPS

phiw13 wrote #318661:

I am, for the same reason, less and less enamoured with LetsEncrypt.

Other ACME providers are out there. Same client, different API endpoint. I trialled BuyPass for a bit, but ran into trouble with OCSP stapling.

Offline

#7 2019-07-09 12:53:57

gaekwad
Server grease monkey
From: People's Republic of Cornwall
Registered: 2005-11-19
Posts: 4,134
GitHub

Re: DNS-over-HTTPS

phiw13 wrote #318661:

Somewhere in the archives of the forum there is fairly recent thread which contains some mention of this feature.

This is the list I use: github.com/curl/curl/wiki/DNS-over-HTTPS#publicly-available-servers

Offline

#8 2019-07-09 18:26:34

colak
Admin
From: Cyprus
Registered: 2004-11-20
Posts: 9,007
Website GitHub Mastodon Twitter

Re: DNS-over-HTTPS

gaekwad wrote #318666:

This is the list I use: github.com/curl/curl/wiki/DNS-over-HTTPS#publicly-available-servers

Cool!! Thanks Pete.


Yiannis
——————————
NeMe | hblack.art | EMAP | A Sea change | Toolkit of Care
I do my best editing after I click on the submit button.

Offline

Board footer

Powered by FluxBB