本帖最後由 mpegdecoder 於 2020-9-1 01:16 編輯
過路插花
parental control 一個"笑"字
https://support.mozilla.org/en-U ... -over-https#w_risks
Benefits
DoH improves privacy by hiding domain name lookups from someone lurking on public WiFi, your ISP, or anyone else on your local network. DoH, when enabled, ensures that your ISP cannot collect and sell personal information related to your browsing behavior.
Risks
Some individuals and organizations rely on DNS to block malware, enable parental controls, or filter your browser’s access to websites. When enabled, DoH bypasses your local DNS resolver and defeats these special policies. When enabling DoH by default for users, Firefox allows users (via settings) and organizations (via enterprise policies and a canary domain lookup) to disable DoH when it interferes with a preferred policy.
In the US, Firefox by default directs DoH queries to DNS servers that are operated by CloudFlare, meaning that CloudFlare has the ability to see users' queries. Mozilla has a strong Trusted Recursive Resolver (TRR) policy in place that forbids CloudFlare or any other DoH partner from collecting personal identifying information. To mitigate this risk, our partners are contractually bound to adhere to this policy.
DoH could be slower than traditional DNS queries, but in testing we found that the impact is minimal and in many cases DoH is faster.
DoH 測驗
https://www.cloudflare.com/ssl/encrypted-sni/
樓下繼續/// |
簡體版
訂閱頻道
訂閱電子報
發表於 2020-9-1 01:15
| 
