Um, wtf? So, they're now bypassing user choice on DNS in order to send your domain lookups to Cloudflare and this is supposed to be security?
From https://bugzilla.mozilla.org/show_bug.cgi?id=1529437 it says "[QA:] We have finished testing ... GREEN - SHIP IT" and "signed version [...] for release". Does that mean it went mainstream and is now a browser default?
I see a preference name "network.trr.uri" with a cloudflare URL used for "dns-query" ... that looks bad?
From https://bugzilla.mozilla.org/show_bug.cgi?id=1529437 it says "[QA:] We have finished testing ... GREEN - SHIP IT" and "signed version [...] for release". Does that mean it went mainstream and is now a browser default?
I see a preference name "network.trr.uri" with a cloudflare URL used for "dns-query" ... that looks bad?
Edit: just found this from Mozilla
"We are currently exploring what the right testing approach should be with users who have opted to participate by using Firefox Nightly." (from Senior Dir. for Eng., https://www.theregister.co.uk/2018/03/20/mozilla_firefox_tes...)
Mozilla's official line is that they consider using nightly as an opt in to send all your DNS requests to a third-party.
Now come on, no-one at Mozilla believes that is true to users expectations.