Wednesday, 26 February 2020 09:43

Firefox moves to encrypted DNS for US users by default Featured

By
Selena Deckelmann: "Today, we know that unencrypted DNS is not only vulnerable to spying but is being exploited, and so we are helping the internet to make the shift to more secure alternatives." Selena Deckelmann: "Today, we know that unencrypted DNS is not only vulnerable to spying but is being exploited, and so we are helping the internet to make the shift to more secure alternatives." Courtesy Mozilla Foundation

The Mozilla Foundation has begun rolling out encrypted DNS over HTTPS for its Firefox browser by default for users in the US, but has no plans in place for other global regions.

A Foundation spokesperson told iTWire in response to a query: "We are currently focused on releasing this feature by default only to users in the United States.

"We do not have plans to roll out the feature in Europe or other regions at this time. However, we strongly believe that DNS over HTTPS is good for the privacy of people everywhere."

A statement from the Foundation said the rollout for American users would continue over the next few weeks to ensure there are no major issues with this new protocol.

Selena Deckelmann, vice-president Firefox Desktop, said work to put the feature in place had begun more than two years ago.

"To put this change into context, we need to briefly describe how the system worked before DoH," she wrote.

"DNS is a database that links a human-friendly name, such as www.mozilla.org, to a computer-friendly series of numbers, called an IP address (e.g. 192.0.2.1).

"By performing a 'lookup' in this database, your Web browser is able to find websites on your behalf. Because of how DNS was originally designed decades ago, browsers doing DNS lookups for websites — even encrypted sites — had to perform these lookups without encryption."

This means that other devices along the route can pick up the data transmitted and anyone with sufficient technical expertise can spy on people's Web browsing patterns.

But this does not mean that those in other countries cannot use encrypted DNS.

"We’re enabling DoH by default only in the US," Deckelmann said. "If you’re outside the US and would like to enable DoH, you’re welcome to do so by going to Settings, then General, then scroll down to Networking Settings and click the Settings button on the right. Here you can enable DNS over HTTPS by clicking, and a checkbox will appear. By default, this change will send your encrypted DNS requests to Cloudflare."

Users can choose between two providers — Cloudflare and NextDNS — both of which are trusted resolvers.


BACK TO HOME PAGE

NEW OFFER - ITWIRE LAUNCHES PROMOTIONAL NEWS & CONTENT

Recently iTWire remodelled and relaunched how we approach "Sponsored Content" and this is now referred to as "Promotional News and Content”.

This repositioning of our promotional stories has come about due to customer focus groups and their feedback from PR firms, bloggers and advertising firms.

Your Promotional story will be prominently displayed on the Home Page.

We will also provide you with a second post that will be displayed on every page on the right hand side for at least 6 weeks and also it will appear for 4 weeks in the newsletter every day that goes to 75,000 readers twice daily.

POST YOUR NEWS ON ITWIRE NOW!

INVITE DENODO EXECUTIVE VIRTUAL ROUNDTABLE 9/7/20 1:30 PM AEST

CLOUD ADOPTION AND CHALLENGES

Denodo, the leader in data virtualisation, has announced a debate-style three-part Experts Roundtable Series, with the first event to be hosted in the APAC region.

The round table will feature high-level executives and thought leaders from some of the region’s most influential organisations.

They will debate the latest trends in cloud adoption and technologies altering the data management industry.

The debate will centre on the recently-published Denodo 2020 Global Cloud Survey.

To discover more and register for the event, please click the button below.

REGISTER HERE!

BACK TO HOME PAGE
Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

BACK TO HOME PAGE

Webinars & Events

VENDOR NEWS

REVIEWS

Comments