Show HN: Running the second public ODoH relay

3 comments

• gigatexal 1 minute ago
  What would it take to get truly anonymous dns? I guess it’s not really possible no?
• cedws 22 minutes ago
  What’s the selling point of ODoH given the low uptake of ECH which means the name of the server you’re talking to is given away anyway?
  [-]
  • fc417fc802 19 minutes ago
    I'd think that if you've got several leaks then patching one up is still forward progress even if it doesn't deliver a full fix immediately.
  • rdme 13 minutes ago
    They solve different things. ODoH hides your question, not who you're talking to.
• rdme 1 hour ago
  The relay is a systemd unit on a VPS, Caddy for TLS, SSRF-hardened (regex-strict hostnames, no IP literals). eTLD+1 same-operator check rejects relay+target run by the same org by default. HPKE is odoh-rs from Cloudflare

  ``` cargo install numa

  # set mode = "odoh" in numa.toml ```

  Repo: https://github.com/razvandimescu/numa