Date: Tue, 24 Feb 2026 14:28:52 +0000 From: bugzilla-noreply@freebsd.org To: doc@FreeBSD.org Subject: [Bug 293425] handbook: Sec 32.7 should describe how to configure client-side DNS-over-HTTPS (DoH) Message-ID: <bug-293425-9-R4u0tNxFWD@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-293425-9@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=293425 --- Comment #5 from Bruce Simpson <bms@FreeBSD.org> --- I respectfully disagree. The point behind adding an official DoH HOWTO fits with the ongoing initiative of the FreeBSD Foundation to press for wider desktop adoption, and reflects feature parity with other desktop-oriented distributions (and of course, Windows itself, by extension). So it should still go in the Handbook, IMO, and better still, the Project should offer reasonable defaults for this. I accept your point that the use of local_unbound isn't strictly required, however, this was the most expedient means of getting a running configuration at short notice. However, mdnsd is also required for .local mDNS resolution on a LAN, although its capabilities can be include using mDNSResponder_nss. Most desktop oriented distributions do this out of the box, including server-oriented ones such as Rocky Linux, and, of course, Windows 11. I largely don't use FreeBSD for casual browsing now, though, so as I've said earlier in these comments, I now allow my VM instances to use "classic" unencrypted recursive DNS over UDP via my local WLAN router. The privacy exposure in that case is minimal. FWIW I prefer and recommend Quad9 over the other two "competing" Anycasted recursive DNS providers. -- You are receiving this mail because: You are the assignee for the bug.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-293425-9-R4u0tNxFWD>