The following lines were added (+) and removed (-):
There are three major secure transport protocols which have been, or are being, standardized for DNS. These are DoT, DoH, and DoQ:# DoT (DNS over TLS): this encrypts the DNS traffic but doesn’t try to hide it.# DoH (DNS over HTTPS): this hides the DNS traffic by making it look like any other (HTTPS[2]) web traffic.# DoQ (DNS over QUIC): like DoH, this hides the DNS traffic by making it look like any other (HTTPS) web traffic, but for a more modern variant of web traffic.DNS-over-HTTPS relies on a Trusted Recursive Resolver (TRR). The centralized DNS on the far end of the encryption which has to decrypt and do the DNS resolution is known as the Trusted Recursive Resolver (TRR) and being considered Trusted is purely at the discretion of someone else besides you. Firefox, as an example, is currently using https://cloudflare-dns.com/dns-query as their TRR, so Mozilla wants you to believe you can trust Cloudflare with your privacy. There is no government department of oversight on what is considered a TRR so why should you trust their TRR over your own ISP DNS resolution system?