Why big ISPs aren’t happy about Google’s plans for encrypted DNS
-
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Add a PiHole to hide a lot of your DNS activity. Not all, by any means, but it greatly reduces it.
I have PiHole setup at my residence and funnily enough there are a lot of things that are free like (PBS streaming) which isn't available because they are required to have access to your info. . .
-
@DustinB3403 said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Add a PiHole to hide a lot of your DNS activity. Not all, by any means, but it greatly reduces it.
I have PiHole setup at my residence and funnily enough there are a lot of things that are free like (PBS streaming) which isn't available because they are required to have access to your info. . .
Weird. I've not seen any of those yet, but wow.
-
@scottalanmiller Yeah the services depend on doubleclick etc, so if you have those blocked, then you're SOL for using those streaming services. I was kind of pissed about it. .
-
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Add a PiHole to hide a lot of your DNS activity. Not all, by any means, but it greatly reduces it.
This does nothing to hide it. It only centralizes the "device" requesting the DNS.
Edit: And if you host it externally, then your ISP still sees your DNS.
-
@JaredBusch said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Add a PiHole to hide a lot of your DNS activity. Not all, by any means, but it greatly reduces it.
This does nothing to hide it. It only centralizes the "device" requesting the DNS.
Edit: And if you host it externally, then your ISP still sees your DNS.
And caches, so it only knows that something has been looked up, but not how often.
-
@JaredBusch said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Edit: And if you host it externally, then your ISP still sees your DNS.
Good point. Hides it from one place, but exposes to another.
-
PiHole can do DNS over HTTPS if you configure it (for its own lookups, not your lookups to it.)
-
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
PiHole can do DNS over HTTPS if you configure it (for its own lookups, not your lookups to it.)
Not a default setting in the GUI last tie I looked. /looks at link, yup not a default thing yet.
Good to exist, but until it is native, adoption will be low.
-
It's still a nascent tech.
-
Why not set this up to make all of your dns queries
-
@Obsolesce how does that help when I do 99% of my lookups from a desktop?
-
@Obsolesce if I did that, it would bypass my PiHole and put all kinds of crap back into my pages on my phone slowing it down. That would suck.
-
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@Obsolesce if I did that, it would bypass my PiHole and put all kinds of crap back into my pages on my phone slowing it down. That would suck.
It is at least a simple DNS privacy option when you are not at home. But I found it mostly useless.
-
@DustinB3403 said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@scottalanmiller Yeah the services depend on doubleclick etc, so if you have those blocked, then you're SOL for using those streaming services. I was kind of pissed about it. .
Yup, CBS does this as well.
-
@scottalanmiller said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@Obsolesce if I did that, it would bypass my PiHole and put all kinds of crap back into my pages on my phone slowing it down. That would suck.
All of our edge devices are set to block DNS queries from anywhere but the local DNS server. So, no avoiding it.
-
Ugh: https://support.umbrella.com/hc/en-us/articles/360001371526-Web-Browsers-and-DNS-over-HTTPS-default
Cisco/Umbrella/OpenDNS instructions to block DoH.
-
@PhlipElder said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
Cisco/Umbrella/OpenDNS instructions to block DoH.
Well it involves security and Cisco doesn't like security.
-
So I am thinking this makes search engine data much more valuable when your ISP isnt able to sell your information as easily.
-
@IRJ said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
this makes search engine data much more valuable
Follow the money, right? Good catch!
-
@JasGot said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
@IRJ said in Why big ISPs aren’t happy about Google’s plans for encrypted DNS:
this makes search engine data much more valuable
Follow the money, right? Good catch!
Definitely a good thing overall, but as expected something is always in it for Google