Does anyone know why DNS over HTTPS in systemd doesn’t have a decision point? I mean, are there security, privacy or technical factors against it?
Ask there what is when this wil be available
My recollection is that when DoH and DoT were initially being adopted, DoH was mostly being adopted by web browsers and DoT was more used in other contexts (OS, networking devices, etc). Because DoT had properties that made it more suitable and flexible from the point of view of a network or system administrator. Whereas DoH can be more limiting and less flexible from an administration POV (which is both a downside and also its primary strength depending on the context). At least that is my recollection of how the comparative advantages of DoH and DoT were explained to me. I don’t know if that is the reason behind Systemd’s preference for DoT over DoH, but it seems plausible.
Also Afaik, all PG recommended DNS resolvers support both DoH and DoT.
1 Like