There doesn’t seem to be any information readily available about how to specify DNS in Fedora Silverblue.
This thread dead ends →
Since the ostree is Immutable, configuring Firefox won’t work and that wouldn’t be systemwide anyway.
I would like TLS or DOH encrypted DNS for all traffic.
I have in mind DNS like these providers:
Please share others that you would recommend besides 18.104.22.168
I do not know about better trustworthy list of global providers. Of course some local providers might provide good service, while following local regulations for privacy protection.
I think toolbox container would not work, but I don’t use it often and haven’t tried. We have dnscrypt-proxy rpm package in Fedora. I would recommend unbound for DoT implementation, it but requires some manual configuration. Never used it on Silverblue or other ostree based distribution though.
Yes, turns out that the system resolver works much like standard Workstation.
Some networks block private DNS, oddly enough though. VPN works and tor bridge, but why block encrypted DNS? Why would any sysadmin block Cloudflare? If I was sysadmin, I would increase the QoS of secure and private DNS.
Having worked some more with Silverblue and figured out how to do automatic updates with ostree and add flatpack, etc, I would definitely recommend it. Some very cool design features!
Shameless plug, use OpenDNS! There is DoH support too. I use it on all my devices at home and it performs great. I set up my daughter’s tablet to use the family shield and can confirm it works as desired, no bad sites (yeah it’s weird to test those things on your kids’ devices but you have to to know it works).