diff options
| author | Tomas Krizek <tomas.krizek@nic.cz> | 2020-11-25 14:13:03 +0100 |
|---|---|---|
| committer | Petr Špaček <petr.spacek@nic.cz> | 2020-11-25 18:14:19 +0100 |
| commit | a35393b5e9e5eb416db49913648c0cc1519f2c2d (patch) | |
| tree | 24315ac6238caf96fd3df56ab83f2da83ecaa3e2 /daemon/bindings | |
| parent | doc: add certificate reload tip to net.tls() (diff) | |
| download | knot-resolver-a35393b5e9e5eb416db49913648c0cc1519f2c2d.tar.xz knot-resolver-a35393b5e9e5eb416db49913648c0cc1519f2c2d.zip | |
doc: mention DoT/DoH blogpost
Diffstat (limited to 'daemon/bindings')
| -rw-r--r-- | daemon/bindings/net_tlssrv.rst | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/daemon/bindings/net_tlssrv.rst b/daemon/bindings/net_tlssrv.rst index 2ad7ba95..0d0431e6 100644 --- a/daemon/bindings/net_tlssrv.rst +++ b/daemon/bindings/net_tlssrv.rst @@ -16,6 +16,10 @@ DoT and DoH (encrypted DNS) DoT and DoH encrypt DNS traffic with Transport Layer Security (TLS) protocol and thus protects DNS traffic from certain types of attacks. +You can learn more about DoT and DoH and their implementation in Knot Resolver +in `this article +<https://en.blog.nic.cz/2020/11/25/encrypted-dns-in-knot-resolver-dot-and-doh/>`_. + .. _dns-over-tls: DNS-over-TLS (DoT) @@ -36,7 +40,7 @@ DNS-over-HTTPS (DoH) and has fewer dependencies. Make sure to use ``doh2`` kind in :func:`net.listen()` to select this implementation. -.. warning:: Independent information about political controversies around the +.. tip:: Independent information about political controversies around the DoH deployment by default can be found in blog posts `DNS Privacy at IETF 104 <http://www.potaroo.net/ispcol/2019-04/angst.html>`_ and `More DOH <http://www.potaroo.net/ispcol/2019-04/moredoh.html>`_ by Geoff Huston and |