UK ISP group names Mozilla 'Internet Villain' for supporting 'DNS-over-HTTPS'

&gt; In the UK, ISPs are legally forced to block certain types of websites, such as those hosting copyright-infringing or trademarked content. Some ISPs also block other sites at their discretion, such as those that show extremist content, adult images, and child pornography. These latter blocks are voluntary and are not the same across the UK, but most ISPs usually tend to block child abuse content.<p>It does give the lie to the &quot;for the children&quot; argument when blocking copyright infringement is mandatory and banning child porn is optional.

A&amp;A (a UK ISP) today donated £2940 to the Mozilla foundation. It&#x27;s the amount that ISPA membership would have cost them if they were members which of course they are not:<p><a href="https:&#x2F;&#x2F;twitter.com&#x2F;aaisp&#x2F;status&#x2F;1146803916853645314" rel="nofollow">https:&#x2F;&#x2F;twitter.com&#x2F;aaisp&#x2F;status&#x2F;1146803916853645314</a>

I applaud the IWF&#x27;s intentions - I agree with ending child abuse - and am personally quiet happy with <i>effective</i> if draconian measures<p>the problem there is the effective not the draconian<p>We know some evil people record these vile acts, but we don&#x27;t think that banning video cameras will solve the problem - so my gut feeling is that banning abuse images online is less about stopping the crime and more about not being reminded it exists.<p>So I wonder what the effective solutions to child abuse are?<p>Something to do with nosey neighbours willing to pry? With school teachers being amazingly sensitive? something to do with spending huge amounts on foster care and social services - something to do with simply getting to know and talk with your neighbours? or something else?<p>Was childline ever effective?<p>I don&#x27;t know - but it&#x27;s a huge problem with amazing ROI - and well worth spending at least as much as we do on pointless record my browser history projects.

I personally would have been a lot more comfortable with a different DNS protocol if<p>1) the companies pushing them didn’t limit it to just their product (and instead added it to the C runtime resolver)<p>2) didn’t limit it to their servers (that’s honestly pretty concerning)

So they nominated Firefox for implementing DNS over HTTP but not Chrome? Does anyone know their rationale for that?

If the UK disapproves I&#x27;ll be sure to use it! Only gotcha is screw this per-application stuff, will want the whole computer doing it. But that shouldn&#x27;t be too hard to rig up on Linux.<p><a href="https:&#x2F;&#x2F;tools.ietf.org&#x2F;html&#x2F;draft-huitema-quic-dnsoquic-05" rel="nofollow">https:&#x2F;&#x2F;tools.ietf.org&#x2F;html&#x2F;draft-huitema-quic-dnsoquic-05</a> oooo.<p><a href="https:&#x2F;&#x2F;github.com&#x2F;jedisct1&#x2F;dnscrypt-proxy" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;jedisct1&#x2F;dnscrypt-proxy</a> does a few good protocols.

&quot;The Net interprets censorship as damage and routes around it.&quot;<p>-John Gilmore

I&#x27;m a bit of an internet novice so excuse me if this is dumb but won&#x27;t the ISP still know which IP I&#x27;ve connected to? Just because I haven&#x27;t conveniently looked it up in their giant DNS dictionary doesn&#x27;t mean they can&#x27;t just follow the traffic, right?

I&#x27;m split here. Obviously this nomination only speaks well of Mozilla, but regarding DoH itself, isn&#x27;t it a... problematic technology when it comes to user freedom? With DoH, how is Pi-hole going to work? Not sure if I like browsers working around the OS on this one; this should really be a user-configurable OS-level service.

DNS is the last cleartext channel for ISP&#x27;s to monitor browsing. This isn&#x27;t about &quot;porn&quot; at all. Even with HTTPS ISP&#x27;s have long been able to snoop DNS to find all the sites you visit.<p>This data is extremely valuable for marketing since the ISP also knows who you are and where you live. And using DNS bypasses tracker blocking.<p>This is all about ISP&#x27;s getting mad that their advertising revanue is being cut off. And possibly a lot of pressure from governments to keep &quot;metadata&quot; like DNS requests in the clear

I can see why the gov&#x27;t would have something to say about DoH, but even though the article specifically asks &quot;why do ISPs hate it?&quot;, it doesn&#x27;t actually answer why ISPs themselves would have a hat in the ring. Surely they cannot be blamed if DoH prevents them from sniffing users&#x27; traffic?

DoH -&gt; DNS over HTTP.

Oh no, suddenly ISPs are relegated back to their role as common carriers of data!

Is there any good local DNS proxy server that transforms classic DNS to DNS-over-HTTPS, for applications that don&#x27;t implement it natively (such as Desktop Chromium) ?

DoH is plugging a security hole. ISPs and other entities were using that security hole to implement features for their users. The correct response is for them to use a different method of implementing their features that does not compromise user security.<p>Their whole argument against DoH is ridiculous.

I believe ISP level blocking in the UK can already be easily bypassed simply by not using your ISPs DNS servers.

This is pretty standard in the UK under the current political climate. The Conservative Government about 2 years ago was hell bent (and probably still is) on getting rid of &quot;strong encryption&quot; and wants backdoors in pretty much everything.<p>Both major political parties are pretty censorious and many of the smaller parties aren&#x27;t much better.