I’m not sure if this really belongs here, but given the nature of privacy oriented discussion that often occurs, I believe it would be of some interest to many folks here. This is a discussion of the nature of the centrality of publicly available DNS resolvers, many of which are offering DoH and DOT:
For a while, I was running my own resolver that only had the root hint addresses available to it. Initially lookups were slow, but once the results were cached, it seemed to be fairly speedy. I would be assured that I should be getting the correct results from the authoritative servers within some margin of error/expectation.
However, these DNS queries happen on an easily filterable port with the data in the clear. This pushed me to start using DoT, which I currently use, so that my queries would no longer be loggable by my ISP, but also to prevents my ISP from polluting my DNS results through packet filtering and manipulation.
Has anyone heard of any movement where authoritative servers provide their data over DoH/DoT so that one could build their own resolver outside of interference by ISPs and not have to rely on main central open resolvers like Cloudflare or Google?