Firefox – DoH enabled by default for US users:
– Today, Mozilla enabled DNS over HTTPS (DoH) by default for users in the USA.
– DNS requests are sent to Cloudflare by default. However, NextDNS can be selected.
– Trusted DNS resolvers are listed here: https://wiki.mozilla.org/Security/DOH-resolver-policy#Conforming_Resolvers
I wonder how much money Mozilla got for that / get for every client
Also if the Browser doesn't trust the own system, it's time to don't trust the browser.
@infosechandbook Is DOH needed if we are using a VPN?
It depends on your VPN provider. Some VPN providers might only forward your HTTP/HTTPS traffic, but might not resolve your DNS requests. You can go to https://dnsleaktest.com/ to identify your DNS resolver. If you are connected to your VPN provider and your DNS resolver is still your ISP, then a dedicated DoH/DoT resolver is needed if you want to use this.
chaos.social – a Fediverse instance for & by the Chaos community