Viscosity support for DoH (DNS-over-HTTPS)
Posted: Mon Apr 02, 2018 3:10 am
I've setup DNS in Viscosity for every connection, but I was wondering: how does Viscosity contact the resolvers in Full DNS mode? Of course the DNS request is sent through the VPN tunnel, but after exiting does it perform a DNS lookup on port 53? Or does it use DoH on port 443?
If there's no DoH support, are you willing to add this functionality to Viscosity?
From a privacy standpoint DoH would be wise imho, because even if you use a VPN, a MITM could still see which IP addresses the VPN user requests from the DNS, if the last mile (so to speak) is clear text on port 53. The MITM wouldn't know the user's true IP address, but he'd still be able to create an online activity profile, which he can use later to identify the user, even if he uses a different VPN connection.
If there's no DoH support, are you willing to add this functionality to Viscosity?
From a privacy standpoint DoH would be wise imho, because even if you use a VPN, a MITM could still see which IP addresses the VPN user requests from the DNS, if the last mile (so to speak) is clear text on port 53. The MITM wouldn't know the user's true IP address, but he'd still be able to create an online activity profile, which he can use later to identify the user, even if he uses a different VPN connection.