Support DNS over TLS
Current problems
- Currently there is no way to set up DNS over TLS and/or HTTPS via GNOME Control Center
- This is a somewhat limiting factor considering this is supported by 1.1.1.1 and most other DNSs nowadays and provides much better privacy than "simple" DNS.
Goals & use cases
- Better privacy
- Better security (e.g. my ISP was recently victim of a DNS hijacking attack recently which could not be prevented by plain-text custom DNS servers)
- More modern DNS implementation
Requirements
- This probably needs a back-end implementation in NetworkManager. It could be done without implementing it there as well (see this link), but it would be hackish and limited to GNOME.
- This clearly also needs design and a GUI implementation. That's what this issue is about.
Relevant art
Uh, I don't know? Feel free to add any.
This is a custom solution for DNS over TLS on macOS, but it looks quite bad in my opinion
This is another custom solution, yet for Windows
Proposal & plan
- This is still quite vague, but I believe there is space for design discussion and/or mockups also before a back-end implementation is made - and might eventually help create one if the features we need are clear.