Skip to main content

DNS over HTTPS: Protecting Your Web Quires


DNS over HTTPS: Protecting Your Web Quires


DNS over HTTPS: Protecting Your Web Quires

What is a DNS? 

In simple words it is like a receptionist in a hotel. Lets say you are visiting someone, you go to the  receptionist and tell them your name and who you wants to visit and they will call the room ask then they want to meet you. If they say yes the receptionist will give the room number. This is the same ting that happens when you ender a website link in the URL in tab, your browser asks DNS server and it gets the IP address and you establish a connection.

But now imagine you ask they receptionist the details and they announce the room number through the PA system, this the same thing that happens when you don't use HTTPS, the entire network can see what the DNS sever is returning. But when you use DoH the IP address is given from every other device in the network. its like if the receptionist put the details in a envolope and handed it to you.

Think of DoH as a secure tunnel for your online travels. Instead of sending your website requests in plain sight, DoH encrypts them using the same technology that protects your online banking - HTTPS. This encryption shields your browsing activity from prying eyes, including internet service providers and even malicious actors.


Here's why DoH matters:

  • Privacy: No more leaving a trail of your online visits. DoH keeps your browsing history confidential, making it harder for advertisers or others to track your activity.
  • Security: Encrypted requests make it much harder for hackers to tamper with your DNS data, preventing them from directing you to fake websites or stealing sensitive information.
  • Performance: DoH can sometimes even improve website loading times, as it can bypass certain bottlenecks in traditional DNS resolution.


How does DoH work?

Think of it like sending a secret message. Instead of shouting your website request across the internet, DoH whispers it through a secure tunnel established with a trusted DNS resolver (the "decoder" of website addresses). This resolver then retrieves the website address for you and sends it back securely, all within the encrypted tunnel.


Is DoH right for me?

DoH offers significant benefits for privacy and security. However, it's important to understand that it's still a relatively new technology, and not all browsers and devices support it yet. Additionally, some countries and organizations might restrict DoH access.


Here are some things to consider:

  • Check your browser settings: Many browsers, like Firefox and Chrome, offer built-in DoH options.
  • Choose a trusted resolver: Do your research and select a resolver with a strong reputation for privacy and security.
  • Be aware of potential limitations: DoH might not be available everywhere, and it might not work with all websites.


The future of DNS:

DoH represents a significant step forward for online privacy and security. As technology evolves and more devices and browsers support it, DoH is likely to become the standard for DNS resolution, offering a more secure and private online experience for everyone.

Recommendation:

Quad9 and Adguard public DNS offer free DNS server with DNS-over-HTTPS and also DNS-over-TLS. Most phones support private DNS and most PCs support DNS-over Https. they can be enabled by just copy-pasting a link 

Remember:

DoH is not a magic bullet, but it's a powerful tool in your online security arsenal. By understanding how it works and considering its potential benefits and limitations, you can make informed decisions about protecting your online privacy and security.