f.lapo.it

There was recently a lot of news about DNS over HTTPS. Some people say it's bad for privacy because it centralizes the DNS requests on Google, Cloudflare and Quad9.

Time to change that and run your own DNS over HTTPS server. I spend some time today in writing, documenting and arranging a small container setup to allow you to do this:

https://octo.sh/container-library/dns-over-https/blob/master/README.md

#DNSoverHTTPS #DoH #Docker #privacy #infosec #selfHosting #DNS
Using one under your direct control is always the best, but that still leaks DNS queries to the upstream DNS provider or, at the very least, to your connectivity provider.
And I probably trust Cloudflare (or even Google) respect for my privacy more than my local internet provider, as being bigger they are under closer scrutiny.
Christof Donat mastodon (AP)
I prefer to trust my provider, rather than Google or Cloudflare. My privider knows which servers I connect to anyway.
That's very true. OTOH Italian providers have usually lousy DNSes anyways and they are subject to state-mandated censorship too. So, yeah, choices depend (very much) on use-cases.