Security/DNS Over HTTPS: Difference between revisions

Jump to navigation Jump to search

Security/DNS Over HTTPS (view source)

Revision as of 16:37, 19 August 2024

116 bytes added ,  19 August 2024
Minor change clarifying that doh.test must include an A or AAAA record in the response.
(→‎Provider Steering: Update supported steering providers.)
(Minor change clarifying that doh.test must include an A or AAAA record in the response.)
 
Line 60: Line 60:
* A DoH endpoint discovered in this manner takes precedence over the automatically chosen default provider (see Default Provider Selection above).
* A DoH endpoint discovered in this manner takes precedence over the automatically chosen default provider (see Default Provider Selection above).
* A provider (endpoint + expected CNAME for discovery) must be explicitly supported for this mechanism to work.
* A provider (endpoint + expected CNAME for discovery) must be explicitly supported for this mechanism to work.
* The CNAME record must point to a domain that has an A or AAAA record, otherwise getaddrinfo will return NXDOMAIN.
* Currently, Comcast (US) and Shaw (CA) are our only supported providers.
* Currently, Comcast (US) and Shaw (CA) are our only supported providers.
* This feature is controlled by the pref `doh-rollout.provider-steering.enabled`.
* This feature is controlled by the pref `doh-rollout.provider-steering.enabled`.
Valentin.gosu
Confirmed users
92

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1251624"

Navigation menu