lw

joined 1 year ago

Introducing BastilleBSD: A Modern, Secure-by-Default FreeBSD Distribution with Built-in Automation and Privacy in c/[email protected]

[–] [email protected] 3 points 2 days ago (1 children)

@stefano

personally, i think DoT/DoH is a great idea, but i run my own DNS servers that support DoT and DoH.

but i think you're referring to the trend of software that ignores the administrator's preferences and forces all DNS traffic to an *external* DoH server (like Quad9), and yes, this is not great.

@BastilleBSD

permalink
fedilink
source
context

Introducing BastilleBSD: A Modern, Secure-by-Default FreeBSD Distribution with Built-in Automation and Privacy in c/[email protected]

[–] [email protected] 3 points 2 days ago (7 children)

@BastilleBSD @stefano

"secure by default" and "hardened" means it sends all your DNS queries to Quad9? hmm...

permalink
fedilink
source