this post was submitted on 23 Apr 2024
1060 points (97.1% liked)
Memes
45680 readers
1185 users here now
Rules:
- Be civil and nice.
- Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
At a minimum this meme maker has no idea how TLS, browsers, cookies, or DNS work.
Um, if you use their DNS they do. Some ISPs force that in fact.
How can the ISP force their dns? They can't know where you got the destination ip from.
They could technically just drop and traffic over port 53 that is not destined to their own DNS servers. But that's china level shit. I've never seen an ISP control this in North America.
They can also redirect that traffic to their own DNS servers, so you think you are using 3rd party DNS, when you are actually still using theirs. This became legal when the Trump administration got rid of net neutrality legislation.
OpenDNS has an article on how to test if your ISP is doing it. https://support.opendns.com/hc/en-us/articles/227988727-How-can-I-tell-if-my-ISP-Allows-Third-Party-DNS-Providers
That is where DNS over TLS and DNS over HTTPS come in. 🙂
Yes of course.