Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 18 submissions in the queue.

Firefox Turns Encrypted DNS On By Default To Thwart Snooping ISPs

posted by Fnord666 on Wednesday February 26 2020, @02:37PM   Printer-friendly
from the and-everyone-else-on-the-network dept.

Arthur T Knackerbracket has found the following story:

Firefox will start switching browser users to Cloudflare's encrypted-DNS service today and roll out the change across the United States in the coming weeks.

"Today, Firefox began the rollout of encrypted DNS over HTTPS (DoH) by default for US-based users," Firefox maker Mozilla said in an announcement scheduled to go live at this link Tuesday morning. "The rollout will continue over the next few weeks to confirm no major issues are discovered as this new protocol is enabled for Firefox's US-based users."

DNS over HTTPS helps keep eavesdroppers from seeing what DNS lookups your browser is making, potentially making it more difficult for Internet service providers or other third parties to monitor what websites you visit. As we've previously written, Mozilla's embrace of DNS over HTTPS is fueled in part by concerns about ISPs monitoring customers' Web usage. Mobile broadband providers were caught selling their customers' real-time location data to third parties, and Internet providers can use browsing history to deliver targeted ads.

Wireless and wired Internet providers are suing the state of Maine to stop a Web-browsing privacy law that would require ISPs to get customers' opt-in consent before using or sharing browsing history and other sensitive data. The telecom companies already convinced Congress and President Trump to eliminate a similar federal law in 2017.

Also at:
Mozilla Blog
The Register

Previously:
Firefox Begins Enabling DNS-over-HTTPS for Users

Original Submission

 
This discussion has been archived. No new comments can be posted.
Firefox Turns Encrypted DNS On By Default To Thwart Snooping ISPs | Log In/Create an Account | Top | 56 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Thursday February 27 2020, @03:50AM

    by Anonymous Coward on Thursday February 27 2020, @03:50AM (#963308)

    IT exists, you can install your own (dns) root based DNS server (not a forwarding one)

    say you install bind with root DNS list and no forwarder. bind will find, query the required dns servers and cache then... so you directly query the domain DNS server with no tracking from others... that is, this query is unencrypted, so the ISP can always snoop your traffic to extract those DNS queries... that is why firefox have build the DNS Over HTTPS, that way you talk with a DNS server over a encrypted network session. But of course, not all DNS servers can talk https, very few can actually... so you have to choose some service that do support it... cloudflare do support it and their terms aren't bad... other are already adding that DOH support and may be included in the default firefox list, for you to choose. Of course, if you have knowledge, you can deploy your own and use it too... as long you remember that traffic after that DOH proxy will be unencrypted and so easy to track if not a big entity with lot of users