On Tue, Oct 1, 2019 at 6:23 AM Stephane Bortzmeyer <bortzmeyer@nic.fr> wrote:
On Tue, Oct 01, 2019 at 12:11:32PM +0200, Jeroen Massar <jeroen@massar.ch> wrote a message of 101 lines which said:
- Using a centralized/forced-upon DNS service (be that over DoT/DoH or even plain old Do53
Yes, but people using a public DNS resolver (of a big US corporation) over UDP is quite an old thing and nobody complained. I really wonder why there was so little reaction against OpenDNS or Google Public DNS and suddently a lot of outcry against DoH...
There is only a reaction to changing the defaults of millions of users to key internet infrastructure. As Mao Zedong said, let a thousand flowers bloom. It only got messy when it turned out everyone effectively could only have 1.
You might also want to look into this amazing thing called Tor if you really want privacy.
I know it, and use it and it is awfully slow. Telling to people who want privacy that they need to adopt the difficult and costly (in performance) solutions made for iranian opponents won't help to improve security.
Noting that many ISPs are deploying both DoT and DoH next to Do53.
Fact-checking: could you name some? (I do not know even one.)