Jump to content

Google plans to test DNS over HTTPS in Chrome 78


Recommended Posts

Google plans to test DNS over HTTPS in Chrome 78

Google revealed plans to test the company's implementation of DNS over HTTPS (DoH) in Chrome 78. DNS over HTTPS aims to improve security and privacy of DNS requests by utilizing HTTPS. The current stable version of Chrome is 77 released on September 10, 2019.


Google notes that DoH prevents other WiFi users from seeing visited websites; common attacks such as spoofing or pharming could potentially be prevented by using DoH.


Google decided to test the DoH implementation in a different way than Mozilla. Mozilla selected Cloudflare as its partner in the testing phase and will use Cloudflare as the default provider when it rolls out the feature to US users in late September 2019.


Firefox users have options to change the DNS over HTTPS provider or turn off the feature entirely in the browser.

Google's DNS over HTTPS plan

Google picked a different route for the test. The company decided to test the implementation using multiple DoH providers. The company could have used its own DoH service for the tests but decided to select multiple providers instead.


Tests will upgrade Chrome installations to use DoH if the DNS service that is used on the system supports DoH. Google circumnavigates any criticism in regards to privacy that Mozilla faced when it announced the partnership with Cloudflare.


Google selected the cooperating providers for "their strong stance on security and privacy" and "readiness of their DoH services" and agreement to participate in the test.


The following providers were picked by the company:

If Chrome runs on a system that uses one of these services for DNS, it will start using DoH instead when Chrome 78 launches.


The experiment will run on all platforms for a fraction of Chrome users with the exception of Chrome on  Linux and iOS. Chrome will revert to the regular DNS service in the case of errors.


Most managed Chrome deployments will be excluded from the experiment, and Google plans to provide details on DoH policies on the company's Chrome Enterprise blog before release to provide administrators with information on configuring those.


Chrome users may use the flag chrome://flags/#dns-over-http to opt in or out of the experiment. The flag is not integrated in any version of the Chrome browser yet.


chrome secure dns lookup

Secure DNS lookups

Enables DNS over HTTPS. When this feature is enabled, your browser may try to use a secure HTTPS connection to look up the addresses of websites and other web resources. – Mac, Windows, Chrome OS, Android

Closing Words

Most Chromium-based browsers and Firefox will start to use DNS over HTTPS in the near future. Firefox provides options to disable the feature and Chrome comes with an experimental flag that offers the same. Experimental flags may be removed at one point in the future however and it is unclear at this point whether Google plans to add a switch to Chrome's preference to enable or disable the feature.




Source: Google plans to test DNS over HTTPS in Chrome 78 (gHacks - Martin Brinkmann)

Link to comment
Share on other sites

So basically it don't work unless your use one of these DNS system wide witch is fine by me because ill stay with using system wide methods changing my DNS  to providers that don't log not providers they pick that all log as long as they don't latter down the road try to force Google DNS on you with this witch i doubt they will because of website blocking laws outside the USA but you never know about  Tech companies . there not even doing this in Linux like Firefox is  or for IOS


  • Cleanbrowsing

  • Cloudflare

  • DNS.SB

  • Google

  • OpenDNS

  • Quad9

More concretely, the experiment in Chrome 78 will check if the user’s current DNS provider is among a list of DoH-compatible providers, and upgrade to the equivalent DoH service from the same provider. If the DNS provider isn’t in the list, Chrome will continue to operate as it does today. The providers included in the list were selected for their strong stance on privacy and security, as well as the readiness of their DoH services, and also agreed to participate in the experiment. The goals of this experiment are to validate our implementation and to evaluate the performance impact.  Our experiment will run on all supported platforms (with the exception of Linux and iOS) for a fraction of Chrome users. On Android 9 and above, if the user has specified a DNS-over-TLS provider in the private DNS settings, Chrome may use the associated DoH provider, and will fallback to the system private DNS upon error.


Source: https://blog.chromium.org/2019/09/experimenting-with-same-provider-dns.html



Firefox way is better they let you turn it off or on and put in any DoH provider in even ones that don't log and it works with out changing DNS It also means Google is spying on your DNS to know to enable it or not !:chug:


I want use Google Chrome on Linux i do have Chromium Snap With VAAPI (Hardware-Accelerated Video Decoding) Support



Google Chrome has no plains on enabling this on Linux so Brave Browser offers the same features  Google does and much more on Linux .

Edited by steven36
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...