dns https
Wendy M. Grossman
24 May 2019 ·
This week's net.wars, "Name change", discusses DNS-over-HTTPS, an arriving protocol that will fix some things and break others, including some of the UK's filtering system, as discussed at this week's ISPA UK conference: https://www.pelicancrossing.net/.../2019/05/namesakes_1.html
44
2 comments
Robert Neuschul
Whilst it may not be a bad thing in the longer term, one of the problems which will undoubtedly arise lies with the many cheap SoHo firewall wifi routers currently in use, which also deliver DHCP services to their lan clients. Most of the firmware on these is not capable of being altered to make use of DoH, so the double DNS query will be routine, and problematic in far more cases than is immediately obvious.
Cue the SoHo/SME vendors queuing up to sell users new routers.
1
Richard Sexton
https is too slow to be usable and unnecessary unless you're typing in a credit card number.
DNS over HTTP works just as well. Encrypt the page, not the site, https is not as safe as they say and has slowed down everything to the point of near unusability. The domain rackjet and cert racket are both just exactly that.
Besides, any way to route around icann works.