Unbound DNS if compiled with --with-libnghttp2 can listen for DoH and your Unbound/Pihole can forward to any destination you desire. This is what it looks like on my firewall:

    # https://doh-int.mydomain.net/dns-query
        interface: [ip of lan port]@443
        interface: [ip of wifi port]@443
        https-port: 443
        http-max-streams: 220
        tls-service-key: "/etc/unbound/keys.d/unbound_server.key"
        tls-service-pem: "/etc/unbound/keys.d/unbound_server.pem"

Null routing the open DoH resolvers is just having a startup script that reads a list of all their IP addresses and

    ip route add blackhole "${IP}" 2>/dev/null

People will argue that DoH can run on anything which is true but all the major resolvers will always use dedicated IP addresses as to not risk blocking CDN end points.

If the childs account is not able to gain admin privs then their ability to change settings can be disabled.

▲ anigbrowl an hour ago | parent [-]

99% of people have no idea what this means, but they do understand voting.

▲

Bender 43 minutes ago | parent [-]

Yup I was just replying to the .001% that was discussing it. Please do reach out to your congress people.

▲

anigbrowl 24 minutes ago | parent [-]

OK but we're talking about a general social problem (parents understandably don't want their kids corupte dby adult stuff, and some adult services vendors are unscrupulous but the internet makes it easy for them to hide.

I personally think this current version of the legislation is a good compromise. Tech workarounds are fine for the few of us that understand the relevant technology (though I have never bothered to compile DNS in my life and have no plans to do so in the future), but they are simply not practical for most people. Every time I hear someone suggesting this sort of thing I find myself tempted to say 'why worry about legislation? If you don't like what it mandates you can just write your own operating system.'

Of course this would not be helpful because writing your own OS is extremely hard beyond classroom/toy examples. And likewise, tech workarounds and even parental controls are hard for most consumers - partly by design. I have an xbox console and have been trying to figure out why it keeps freezing on certain apps for months now. I suspect a telemetry problem but it's just a guess, there isn't really any way to look at logs so it's a trial and error process because most consumer hardware/application vendors want their products to be black boxes.

	▲	shevy-java 3 minutes ago \| parent [-]
		> I personally think this current version of the legislation is a good compromise. I don't think it is a good compromise. It seems to cover the wrong use cases. My use cases have nothing to do with children on any level. Why would I want to submit to government restrictions? That makes zero sense. It's as if the right-to-repair-movement would suddenly be undermined by a lobbyist advocating how restrictions are great. Or Jackie Chan suddenly praising the sinomarxist mono-party.