Comment by gsich

1 day ago

>The only difference between DoT and DoH is that DoT is easier to block and force fallback to totally insecure DNS. There's no reason to ever use DoT if you can use DoH. (And I don't get why the author likes it better: whoever runs the DoT server gets the exact same data that they'd get with a DoH server instead.)

Don't use shitty networks then. This is not an issue for all residential (and mobile) connections. Only corporate and other shtity configured networks are affected by this.

2 comments

gsich

josephcsible 1 day ago

> Don't use shitty networks then. This is not an issue for all residential (and mobile) connections. Only corporate and other shtity configured networks are affected by this.

There are some residential and mobile connections that this is an issue for. And it's not always an option to use a network that doesn't try to do this.

gsich 1 day ago

Maybe 0.01%. Anyway, it's not an argument against it.