Chrome devs tell world that DNS over HTTPS won't open the floodgates of hell

Found on The Register on Wednesday, 30 October 2019
Browse Internet

The blurb comes as part of Google's effort to convince hostile police agencies and legislators around the world that DNS-over-HTTPS (DoH) won't result in ordinary people's internet usage being completely shielded from the ability of state agencies and ISPs to monitor and police them – the snoops will just have to work harder to eavesdrop on folks. In contrast, Mozilla, maker of Firefox, has vowed to press on and redirect users' DNS queries to its preferred host, Cloudflare, if it is so enabled.

So under the premise to protect privacy from curious ISPs, they want to redirect all DNS requests to a single provider: Cloudflare. Yes, we're told that it is possible to change the DoH settings, but how many average users will do that? Right now, DNS traffic spreads across various ISPs; in the not so far away future, the vast majority of this traffic will end up at Cloudflare, ready to be used. For now, everybody involved does not hesitate to underline that this data will never be used, but don't forget that Google already dropped its "Don't be evil" motto. If they really would care, they would not open such a can of worms but simply push for DoT instead which is much simpler and already works.