On Mon, Jul 15, 2019 at 8:52 PM Andy Grover <[email protected]> wrote: > To speak more concretely, right now some existing filtering DNS > providers have ways for users to know if things are working as desired. > OpenDNS has internetbadguys.com for examplle, and other providers have > similar. These are useful, but would be more broadly useful if they > weren't provider-specific. That's basically all this draft is proposing > -- defining one canary domain to check instead of one for each provider. >
Isn't the issue that encrypted DNS might be served by popular providers? So, if DNS and lots of the web are served by Azure or AWS or GCP, a functioning DoH protocol would make it hard to implement naive filtering. thanks, Rob
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
