Hacker News new | past | comments | ask | show | jobs | submit login

I use unbound as my edge resolver, and you can use this to help prevent _some_ rogue DoH clients

  # nx domain for disabling firefox DoH, so we can still get adblocking
  # https://support.mozilla.org/en-US/kb/canary-domain-use-application-dnsnet
  local-zone: "use-application-dns.net" always_nxdomain



Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: