Comment on Cloudflare is bad. Youre right.
MigratingtoLemmy@lemmy.world 4 months agoIt’s actually better privacy since it talks directly to the root servers instead of cloudflare knowing all of your DNS traffic. Quad9 is a good alternative with better data policies
IHawkMike@lemmy.world 4 months ago
So now your ISP sees all of your queries instead of CF. (Assuming the cloudflared option is using DoH)
I’ll trust Cloudflare over Comcast/AT&T/etc. any day of the week.
MigratingtoLemmy@lemmy.world 4 months ago
You might want to study more about SNI. Your ISP knows anyway
IHawkMike@lemmy.world 4 months ago
I know plenty account SNI already, but thanks. You might want to study more yourself, since we’re being condescending.
blog.cloudflare.com/encrypted-sni/
MigratingtoLemmy@lemmy.world 4 months ago
Well, running your own DNS server will also give you eSNI. And Cloudflare still doesn’t know anything
maxwellfire@lemmy.world 4 months ago
Your ISP knows where you’re going anyway. They don’t need DNS for that. They see all the traffic.
girsaysdoom@sh.itjust.works 4 months ago
It looks like Quad9 supports DoH: quad9
MigratingtoLemmy@lemmy.world 4 months ago
You can run a VPN and tunnel your outbound DNS queries over that. Heck, you could tunnel your DNS queries over TOR