Pour avoir le DoT (DNS on TLS)
sudo pacman -S stubby
ou
sudo apt install stubby
éditer les connexions et mettre en DNS : 127.0.0.1
Puis
gedit admin:///etc/systemd/resolved.conf
Puis avoir comme contenu :
# This file is part of systemd.
#
# systemd is free software; you can redistribute it and/or modify it
# under the terms of the GNU Lesser General Public License as published by
# the Free Software Foundation; either version 2.1 of the License, or
# (at your option) any later version.
#
# Entries in this file show the compile time defaults.
# You can change settings by editing this file.
# Defaults can be restored by simply deleting this file.
#
# See resolved.conf(5) for details
[Resolve]
#DNS=
FallbackDNS=1.1.1.1 1.0.0.1 127.0.0.1 9.9.9.10 8.8.8.8 2606:4700:4700::1111 2606:4700:4700::1001 2620:fe::10 2001:4860:4860::8888
Domains=~.
#LLMNR=yes
#MulticastDNS=yes
DNSSEC=allow-downgrade
DNSOverTLS=opportunistic
#Cache=yes
#DNSStubListener=yes
#ReadEtcHosts=yes
Puis :
sudo systemctl restart NetworkManager
Pour vérifier quel serveur DNS vous utilisez : https://www.dnsleaktest.com
Un jeune site que j'aime bien, la ferrari du T-shirt ...bio en plus : GoudronBlanc