nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: This DNS over HTTP thing

From: Ca By <cb.list6 () gmail com>
Date: Tue, 1 Oct 2019 06:39:55 -0700
On Tue, Oct 1, 2019 at 6:23 AM Stephane Bortzmeyer <bortzmeyer () nic fr>
wrote:


On Tue, Oct 01, 2019 at 12:11:32PM +0200,
 Jeroen Massar <jeroen () massar ch> wrote
 a message of 101 lines which said:


 - Using a centralized/forced-upon DNS service (be that over DoT/DoH
 or even plain old Do53


Yes, but people using a public DNS resolver (of a big US corporation)
over UDP is quite an old thing and nobody complained. I really wonder
why there was so little reaction against OpenDNS or Google Public DNS
and suddently a lot of outcry against DoH...



There is only a reaction to changing the defaults of millions of users to
key internet infrastructure.

As Mao Zedong said, let a thousand flowers bloom. It only got messy when it
turned out everyone effectively could only have 1.




You might also want to look into this amazing thing called Tor if
you really want privacy.


I know it, and use it and it is awfully slow. Telling to people who
want privacy that they need to adopt the difficult and costly (in
performance) solutions made for iranian opponents won't help to
improve security.


Noting that many ISPs are deploying both DoT and DoH next to Do53.


Fact-checking: could you name some? (I do not know even one.)
Previous By Date Next
Previous By Thread Next

Current thread: