Mozilla is testing DNS over HTTPs in Firefox (DoH)
Mozilla is testing a more secure method of domain name resolution, known as the Trusted Recursive Resolver (TRR), which issues DNS requests over HTTPs encryption. In this way, your ISP can’t know which domain name you’re querying. It doesn’t know whether you’re requesting Facebook or Gmail. Of course, unless you use a VPN, the ISP will still know which website you’re visiting while browsing.
Current DNS requests are sent over the UDP or TCP protocol without encryption, which is insecure and makes them vulnerable to interception and manipulation. Using DNS over HTTPs (DoH) will make DNS resolution more secure. TRR provides a way to select a trusted DNS resolution server to handle requests, rather than an insecure clear text DNS resolution server.
During the short test period, Mozilla used Cloudflare’s DNS resolution service. Cloudflare is an American cloud service company. Some users felt uncomfortable about this and said that for third-party companies like Cloudflare, they can see the DNS queries of thousands of people. upset. However, Mozilla developers stated that they will give users choices.
You can try this new feature in the Firefox Nightly version.
Source: The Register