New
#1
Hi,
In reality DNS over HTTPS is not more secure than standard DNS. The Security comes from the content the provider offers. HTTPS or other encryption means only bring secured communications.
It Lies on what you accept as "Legit" DNS servers on your network.
IMO at the moment it is currently used to bypass any DNS servers Restrictions on any network you want, as I have not seen any Firewall able to block these request without using Addresses lists of know DoH servers.
Many browsers are starting to use their own DoH servers and the only palliative I have found is to force everything on your Chosen servers at the software level.
Ex: using your preferred DNS provider DoH servers in your Browser.
If you trust AdGuard servers to protect your network. your good.
So, let's break this down into two parts.
First, DNS stands for Domain Name System. This is how Windows determines the Internet Protocol (IP) Address of a site. For example, if you type in your browser "www.google.com" your computer would not know what to do with that name. It needs to lookup that name and find the address associated with that name. To do this, your system asks a DNS server for the IP Address associated with a name and that DNS Server responds back with the address associated with that name.
An analogy: Suppose I have an address book. You want to know the address for John Doe. You ask me for the address. I look in my address book and find the address, and I inform you that John Doe is at 123 Main Street. Now you know how to find John Doe.
Second part: DNS requests can be made over different protocols. Some protocols are secure because the communication over those protocols is encrypted. For example, if your computer sends DNS queries over HTTPS, that would be secure because HTTPS is a secure, encrypted protocol.
I hope that helps.