[Cryptography] Products that prevent DoH?
Viktor Dukhovni
cryptography at dukhovni.org
Thu Mar 12 00:59:33 EDT 2020
On Wed, Mar 11, 2020 at 06:25:58PM -0400, Jan Schaumann wrote:
> > For example, if you're using unbound, it is enough to add:
> >
> > server:
> > local-zone: "use-application-dns.net." always_nxdomain
> >
> > to the configuration of the local resolver, in order to disable implicit
> > DoH in Firefox.
>
> This only works for the case of the default opt-in to
> DoH, not for a client that explicitly enabled DoH via
> their configuration.
Perhaps I should posted the details, but at least in my case I am well
aware of this limitation, my Firefox is also configured to not use DoH.
--
Viktor.
More information about the cryptography
mailing list