• FlapKap@feddit.dk
    link
    fedilink
    English
    arrow-up
    22
    ·
    1 year ago

    How does this work against DNS blocks? I assume if you use your ISPs DNS server and they block that domain ECH won’t help

    • meseek #2982@lemmy.ca
      link
      fedilink
      English
      arrow-up
      44
      arrow-down
      1
      ·
      1 year ago

      This means that whenever a user visits a website on Cloudflare that has ECH enabled, no one except for the user, Cloudflare, and the website owner will be able to determine which website was visited.

    • Darkassassin07@lemmy.ca
      link
      fedilink
      English
      arrow-up
      31
      ·
      1 year ago

      ECH is supposed to be used alongside DoH.

      https://blog.mozilla.org/en/products/firefox/encrypted-hello/

      It’s also important to understand that no one technology can be a panacea. ECH works alongside other security and privacy features in Firefox, including DNS-over-HTTPS (DoH). DoH encrypts DNS queries to protect the translation of website names to IP addresses, which ensures that website names aren’t visible to the network in DNS traffic and is essential for ECH to be effective.

      DoH alone should prevent DNS blockages, ECH would also prevent packet inspection revealing the domain.

    • Kabutor@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      yo have to use cloudflare dns for it to work, not sure, but maybe you can use an external DoH DNS server, haven’t tried that