ISP DNS Privacy

The problem is that your ISP can log and mine your DNS requests, regardless of the servers you use. They definitely do this and one can only assume they then sell it after some sort of processing.

> my ISP can see what I'm pulling on the netWill DNS over HTTPS help mitigate this?

You do realize your ISP can spy on any DNS records passing its routers with deep packet inspection right? Only DNS(HTTPS/TLS) can fix that.

Wouldn't the ISP still know that you're connecting to Google, however?

"Let's encrypt DNS queries but send them to the ISP which can associate the query with subscriber info!"

Your ISP may care about what your connecting to very much, and are prepared to sell it to the highest bidder.https://arstechnica.com/information-technology/2015/03/atts-...

"protects against DNS interception by my ISP"Your ISP can still see the IP address of every web server that you connect to, and can still see the "Host" header that your browser sends in HTTP requests, and also in HTTPS requests (due to SNI) if you're using a reasonably modern OS/Browser combo.All you've done is add an additional third party that can view and log what you're doing.

As long as you don’t use encrypted DNS (e.g. DoH) it doesn’t matter which DNS server you use - the ISP sees your requests and the replies, and the sees you accessing the returned IP within 10 seconds.Also, unless it’s behind Cloudflare. Most nontrivial sites today have a unique IP so even with DoH there’s a good probability any specific site will be identified.If you want your ISP to stay ignorant of where you surf, you MUsT have a VPN.

Sacrificing privacy? Sorry, but my ISP knows what DNS queries I make regardless of which service I use.

Most vpns also contain DNS query so ISPs can't see them how is this any different?