> So how do we fix these? > Avoid untrustworthy resolvers by using Trusted Recursive Resolver. If it's to trust a resolver just 1.1.1.1 (or whatever) > Protect against on-path eavesdropping and tampering using DNS over…
And if that client happens to be the only one avalible to access some service or happens to dominate the market you're doomed. And don't forget that you can change the resolver today, as you can install uBO, but what…
> So how do we fix these? > Avoid untrustworthy resolvers by using Trusted Recursive Resolver. If it's to trust a resolver just 1.1.1.1 (or whatever) > Protect against on-path eavesdropping and tampering using DNS over…
And if that client happens to be the only one avalible to access some service or happens to dominate the market you're doomed. And don't forget that you can change the resolver today, as you can install uBO, but what…