Dear Chromium Development Team,
In light of recent geopolitical events and escalating digital censorship within Russia, I urge the consideration of enabling DNS-over-HTTPS (DoH) by default for Russian users, through the simple activation: bool allow_dns_over_https_upgrade = true;
as per the setting in Chromium's codebase.
This proposal is driven by several critical factors:
War and Propaganda: The Putin regime's ongoing war in Ukraine and the subsequent propagation of state censorship and disinformation campaigns underscore the urgent need for secure and uncensored internet access.
Legal and Human Rights Concerns: Putin's status as a wanted criminal by the International Criminal Court, along with the recent event that happened to the opposition figure like Alexei Navalny, highlight the regime's disregard for legal norms and human rights.
State Censorship and Control: Russia's legal landscape, increasingly crafted by those prioritizing oppression, has led to the implementation of sophisticated Deep Packet Inspection (DPI) techniques. These are used to block access to opposition websites, such as navalny.com, and major social networks, effectively silencing dissent.
Google's Ethical Responsibility: Given that all Google offices in Russia have been closed following the onset of the war, the corporation has no jurisdictional obligations that should prevent it from taking a stand against digital oppression. Upholding the "Don't be evil" principle, Google has a unique opportunity to protect its users in Russia from state-imposed censorship.
Market Influence: With Chrome holding a 50% market share in Russia, implementing DoH by default can have a profound impact on safeguarding user privacy and ensuring access to uncensored information.
The implementation of DoH by default would not only prevent the interception of DNS queries by DPI but also signify a strong stance against digital censorship and surveillance. This change is straightforward but has the potential to make a significant difference in the lives of millions of Russians, offering them a safer, more open internet.
I hope you will consider this proposal seriously and recognize the positive impact it could have on human rights and digital freedom in Russia.
--I also saw a letter from EFF on the same subject:
https://www.eff.org/document/eff-letter-congress-doh
Sorry for being naive and asking questions outside my area of expertise.
Adding in some additional people who might have thoughts on this subject or at least might want to see this.But overall, I'm not sure there's much more that could be done beyond the current state (where Chrome DoH is globally launched to use DoH as the first DNS attempt by default if the system-configured DNS server has a known DoH equivalent and fallback to non-DoH on failure). From a purely technical perspective, Chrome could select an arbitrary known DoH server when the configured DNS server does not have a known equivalent, and could enforce that DoH is always used or requests fail. Use-DoH-or-fail is possible today from configuration, but is not the default behavior for any users.
--
You received this message because you are subscribed to the Google Groups "net-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to net-dev+u...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/net-dev/CAMOjQcFEM8Q8Q88MAOXwyiL4c%3D8fRHBWzs8KtkQj6u%2Bv7my%2BgQ%40mail.gmail.com.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/net-dev/CALJEuvc8hAa6-2LoM0sfMj5o68k5Gxx6sjPGAkqB%2BY_JtQ%2B9-A%40mail.gmail.com.