Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
On September 8, 2019 10:38:03 PM UTC, Adam Borowski <kilobyte@angband.pl> wrote:
>DoH doesn't stop ISP-based spying nor censorship.
Firefox, I believe, already supports encrypted SNI (in nightly at least). Cloudflare does too.
So fully deployed, your ISP can only tell that you're connecting to Cloudflare, Cloudfront, Akamai, Fastly, etc. At least when you're browsing sites using those CDNs.
Trusting those parties is a huge can of worms, of course, but Mozilla has at least contractually limited what Cloudflare can collect and keep[1]. And the alternative for a lot of us is Verizon or Comcast.
That said, ideally it'd be something that each user would be prompted about on first run, being given a clear description and asked if he/she wants it or not. But since upstream hasn't AFAIK coded that, it's not going to happen.
[1] https://developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/firefox/
Reply to: