DOH goes over port 443 using https, impossible to block (unless you want to blacklist all possible URLs that might serve DNS) so cannot be redirected at network level, like with classic DNS, and uses SSL encryption so cannot be “sniffed”.
While it seems good for your privacy, it’s a dream for Google and such, where PiHoles and such DNS blockers will be useless…
Shimitar@downonthestreet.eu 59 minutes ago
DOH goes over port 443 using https, impossible to block (unless you want to blacklist all possible URLs that might serve DNS) so cannot be redirected at network level, like with classic DNS, and uses SSL encryption so cannot be “sniffed”.
While it seems good for your privacy, it’s a dream for Google and such, where PiHoles and such DNS blockers will be useless…