It’s a good thing for consumers. For enterprises it raised the bar of security technical requirements, kinda feeds into security poverty for orgs that can’t invest in tooling.
The queries have to go somewhere by default. I think that optimally, that default should be DoH to a RR of local, vetted providers who have made strict privacy commitments. A single vetted provider is not as wonderful, but sure is a better default than whatever the DHCP tags say.
-
-
I agree with this for consumers, but how would you decide which providers get in? Would you exclude providers who censor sites when ordered to by a court of law or for purposes of compliance with laws passed by democratic governments?
-
Good questions, and I don't know what the answers are - but whatever requirements are agreed upon, it is surely better than "just do what the DHCP tags say and hope for the best
#yolo". If you happen to like your ISP's policy better, then change the default! - 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
You're right to be worried about this Bert, the argument for DoH is so strong and your silly personal attacks are so weak that the days of DNS snooping products are surely numbered.