Hi folks, Context: I’ve been consistently using Mullvad VPN recently. I now stumpled upon a DNS leak tracker site by curiosity which flagged me for a DNS leak. The same is shown on the Mullvad site, though the DNS server does rotate with the exit server location I chose. Disabling DNS over https in my android settings did not change the leaked server IP. I use the IronFox browser, which has its own DNS over https settings.
Question: The IronFox crowd strongly recommends against changing any setting in order to keep a low entropy fingerprint. By default, it’s set to increased protection with Quad9 as preferred provider; defaulting to the system if that doesn’t work. The Mullvad site recommends disabling all DNS via https settings in order to always go with their service. Intuitively, that’s what I would do, but I’m hesitant about screwing around in IronFox.
What do y’all think? Is there any way that setting introduces entropy and if yes, is that worse than a DNS leak for privacy? Pretty regular threat model of reducing online tracking by attention merchants. Thanks in advance.
Pretty regular threat model of reducing online tracking by attention merchants. Thanks in advance.
Change it. Using an adblocker or tracking blocker also makes your fingerprint unique. Yet, most people would still use them for the added convenience.

