Subj : FidoGazette Vol 12 no 14 Page: 3
To   : mark lewis
From : Richard Menedetter
Date : Fri Apr 06 2018 10:59:24

Hi mark!

05 Apr 2018 23:30, from mark lewis -> Janis Kracht:

 JK>> "If you switch [your DNS (jk)] to 1.1.1.1, then that ledger of
 JK>> where you're going online is not being kept by your ISP," Matthew
 JK>> Prince, CEO of Cloudflare, said in an interview.
 ml> anyone in the path between your system and 1.1.1.1 can easily sniff
 ml> the traffic flowing through and gather the information on what domain
 ml> you're looking up and the return response from the DNS server...

They are referring to their DNS over HTTPS.
You can sniff that on the way, you cannot read it as it is encrypted.

 ml> DNS is all in the clear and the only way for it to not be is to use
 ml> some sort of encrypted tunnel from one end to the other...

Exactly, and that is what they are advertising (among other things).

CU, Ricsi

--- GoldED+/LNX
 * Origin: If it works, something went wrong. (2:310/31)

.