This is not a realistic option for most users, and even if it was, what happens when it goes down?
-
-
The problem is that we can no longer do deep packet inspection on traffic passing through a router. If you're a systems administrator, you lose the ability to protect endpoints at the gate. DNS effectively gets moved to the application layer.
-
Is it your endpoint? Then of course you can continue to do packet inspection. If it's not your endpoint, then correct, you will need to start asking for permission. This is a good thing for society, because people should not be able to snoop without permission.
- 5 more replies
New conversation -
-
-
Disabling DoH for an entire fleet via group policy is trivial, and you can filter away to your heart's content. Nobody is proposing deploying DoH in such a way that the owner can't disable it, but I'm proposing that blindly trusting whatever is in the DHCP options is bad default.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
