Ask HN: Why is Oblivious DoH needed at all? Wouldn't any proxy do the job?
With DoH, query integrity and confidentiality are already guaranteed. The only additional ask for something like ODoH is to hide the client IP address from the DNS. For which, any proxy will do. Why bother to go through all the complexities to create ODoH?
If you want to see some details, I compared ODoH with a plain HTTP proxy here: https://www.pcwrt.com/2020/12/oblivious-dns-over-https-vs-doh-through-http-proxy/ What I do is dns over tls through a proxy that way my proxy service can't sniff my queries either. And the dns resolver doesn't know the true source. Exactly what I think. I don't understand why ODoH is such a big splash. DoT and DoH are encrypted but the endpoint can still see your DNS query and your IP address, so your info isn't private. With ODoH, the DNS resolver doesn't get to see your IP address, so that information can't be logged or tracked. Maybe to have an edge over Google free DNS (8.8.8.8).