Page History
...
- Firefox
- Firefox 64.0 includes a configuration option where the URL of a DOH server can be specified and then all queries sent by Firefox will go to that server over DOH.
- It can be turned on in 'Opportunistic mode' via the Firefox->Preferences→Network Settings→Settings dialog (scroll to bottom to find the 'Enable DNS-over-HTTP' check box and URL).
- Here are more details of how it works and how to do more complex configuration e.g. strict mode
- If you want to see the queries on the wire that Firefox is sending you need to export the master key secrets and then import them into wireshark.
- Documentation on the key format is here: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format
- See this Sharkfest presentation for more details (note Wireshark 3.0 supports DoH)
- Firefox 64.0 includes a configuration option where the URL of a DOH server can be specified and then all queries sent by Firefox will go to that server over DOH.
- Bromite (https://www.bromite.org/)
- What is Bromite? It is a fork of Chromium (https://www.chromium.org/): "Bromite is Chromium plus ad blocking and privacy enhancements; take back your browser! Bromite aims at providing a no-clutter browsing experience without privacy-invasive features and with the addition of a fast ad-blocking engine." Note that at the moment Bromite is only for Android, it currently does not provide builds for desktop.
- In release 67.0.3396.88 Bromite has enabled the underlying DoH implementation in Chromium by exposing configuration options (via chrome://flags). Today the choice is either Google or Cloudflare DoH servers but it is up to the user to choose: https://github.com/bromite/bromite/wiki/Enabling-DNS-over-HTTPS
- Chrome
Chrome has a full DoH implementation but the configuration for it is not exposed. However if you want to try it out use something like the following example for macOS:
Code Block /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --enable-features="dns-over-https<DoHTrial" --force-fieldtrials="DoHTrial/Group1" --force-fieldtrial-params="DoHTrial.Group1:server/https%3A%2F%2Fcloudflare-dns%2Ecom%2Fdns-query/method/POST"
