It is currently a very common* misunderstanding that system or browser/application DNS configuration can somehow control malware resolution. Common enough that, IMO, any text on how to "control" or configure resolution or "disable" features like DoH should include at least a small clarification on the point of the scope/limitations of that configuration.
*Anecdotal evidence is the large number of times I have been asked for guidance on "stopping malware" through disabling Chrome DoH. I always have to give the reminder that I can only help with controlling resolutions which go through Chrome, which malware will often not do.
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
