1061

Cough Cough... Chrome... Chough... (slrpnk.net)

submitted 10 months ago by Sunny@slrpnk.net to c/memes@lemmy.ml

150 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] WereCat@lemmy.world 1 points 10 months ago

https://www.cloudflare.com/learning/dns/dns-over-tls/

If I understand it correctly DoH (which I use with NextDNS) should prevent ISP from snooping.

[-] Darkassassin07@lemmy.ca 1 points 10 months ago* (last edited 10 months ago)

It will prevent the ISP from snooping on, or tampering with, the DNS request. However when you go to use the IP you've retrieved via DoH/DoT; your first request establishing a TLS connection to that IP will contain an unencrypted SNI which states the domain you are trying to use. This can be snooped on by your ISP.

this post was submitted on 23 Apr 2024

1061 points (97.1% liked)

Memes

47110 readers

906 users here now

Rules:

Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago

MODERATORS

gary_host_laptop@lemmy.ml

sexy_peach@feddit.de

cyclohexane@lemmy.ml

cypherpunks@lemmy.ml