-
The unauthenticated HPKE modes have been defined using KEM primitives, and it's very easy to slot post-quantum KEM into them. The authenticated modes require AKEM or NIKE primitives, for which we don'…
-
"DNS over TLS differs from DNS over HTTPS, mostly in that it omits the HTTP/2 protocol, sending DNS data directly over the TLS circuit itself. This simplification means DoT misses the opportunity to b…
-
## Cilium Feature Proposal
**Is your feature request related to a problem?**
Today is not possible to call services between clusters unless the `Service` resource and the `Namespace` are…
-
As per https://tools.ietf.org/html/draft-pauly-dprive-oblivious-doh-03 and https://blog.cloudflare.com/oblivious-dns/
-
## Description
DNS-over-HTTPS is only available in auto-upgrade mode in Brave; this is behavior inherited from Chromium. DNS-over-HTTPS should instead be the default choice for DNS resolutio…
-
Rethink configuration:
Connect over SOCKS5 proxy.
Configuration -> Network -> enabled "Use all available networks (experimental)" and "Loopback (experimental)"
Configuration -> Network -> "Choose f…
-
One issue with allowing users to trust a validating resolver over a secure channel is that the secure connection itself relies on WebPKI which takes away the advantages provided by DANE.
Pinning is…
-
Dear stubby team,
I want my DNS requests to be spread over different servers. For this, option `round_robin_upstreams` is a first step. However, it is weak if the attacker gets to make fake DNS req…
-
### Description
The current 'Groups' menu has a number of problems:
* Can't navigate to certain groups such as IESG, IETF LLC
* Splits up the various parts of an Area in to separate sections of the…
-
I find DNSCrypt-Proxy secure, efficient, and easy to integrate with other services in relation while in use with Dietpi. Is there any plans for this feature? If yes does it need support?
Sincerely,…