londons_explore 3 hours ago

I think code to implement http/1.1 in whatever software stack they use would have been shorter than the blog post...

Reply View 5 replies
  • stingraycharles 3 hours ago

    I think you’re severely underestimating the complexity of http/1.1. It’s definitely much simpler than http/2, but it’s a lot of code that needs to be maintained.

    Reply View 1 reply
    • londons_explore 2 hours ago

      To write the code from scratch, sure.

      But I'm thinking a few lines of nginx config to proxy http 1.1 to 2

      Reply View 0 replies
  • werdl 3 hours ago

    probably not - it can be quite poorly defined in places and the edge cases can be very fiddly. by pushing for http/2 it encourages more users to pick it up imo

    Reply View 2 replies
crimsonnoodle58 25 minutes ago

Mikrotik DoH user here. While I don't use Quad9, I do use 1.1.1.1. I hope they don't follow suit before Mikrotik get a chance to add HTTP/2 support (if ever).

Reply View 0 replies
dev_l1x_be 3 hours ago

I never understood DOH over DOT. It makes sense if you want to hide DNS lookups so that people cannot block the DNS queries to ad and other scam networks.

Reply View 6 replies
  • wongogue 2 hours ago

    My ISP (my area is serviced by 1 more but they offer lower speeds) blocks the DoT port. They cannot block 443. If they start blocking popular DoH domains, I can use any of the mirrors or run my own over https://wongogue.in/catpics/

    Reply View 1 reply
    • the8472 an hour ago

      Anything that doesn't provide raw access at the internet protocol layer (other than RFP to prevent spoofing) shouldn't qualify as internet provider.

      Reply View 0 replies
  • itopaloglu83 2 hours ago

    DOH prevents malicious network providers from blocking DOT traffic to enforce their own DNS services for “efficiency” reasons.

    Most ISPs just want to sell your data and with encrypted client hello and DOH they’re losing visibility into what you’re doing.

    Reply View 0 replies
  • zamadatix 2 hours ago

    DOT picked an odd port, DOH uses 443. Otherwise they both have the benefits of TLS.

    Reply View 0 replies
  • zokier an hour ago

    DoQ is better than either dot/doh

    Reply View 0 replies
  • junon 2 hours ago

    It's both. In oppressive countries (Iran, China, Russia) where all traffic is filtered, DOH is supposed to help keep things concealed, too.

    Reply View 0 replies
temp0826 an hour ago

NextDNS has a DOH3 (as in, http/3) endpoint but afaict it doesn't seem to always use http/3.

Reply View 0 replies