Comment by WhyNotHugo
1 day ago
Disabling DoH in your browser’s settings should make it fall back to you system’s resolver.
You’ll only be vulnerable to a MitM attack if your system’s resolver is insecure and also vulnerable to a MitM attack.
1 day ago
Disabling DoH in your browser’s settings should make it fall back to you system’s resolver.
You’ll only be vulnerable to a MitM attack if your system’s resolver is insecure and also vulnerable to a MitM attack.
(which all are by default)
That's a pretty serious security issue, which affects every other process on your host.
No, plenty of OSs ship encrypted DNS resolvers by default.
Zero mainstream OSs ship encrypted DNS resolvers by default, unless you count ones that will automatically fall back to insecure DNS, which defeats the purpose since a network attacker can cause that.