Also use a private DNS server even if not using a privacy VPN. I set Firefox to route through Mullvad always. It’s just another way your browsing activity gets fed back to your ISP or DNS provider company
Edit: Also I think VPNs have a lot more utility than that. E.g. hiding your real IP from websites to prevent geolocation or tying back to your real ID, preventing your ISP (and thus the US govt through PRISM etc) from logging your traffic, etc. Yes the details of what you do are encrypted through HTTPS but the servers you connect to and the times you do it are not. The CIA says they kill people based off metadata so I would at least try to shift the trust away from known collaborators like my ISP and towards groups like Mullvad to protect myself
Also use a private DNS server even if not using a privacy VPN. I set Firefox to route through Mullvad always. It’s just another way your browsing activity gets fed back to your ISP or DNS provider company
Edit: Also I think VPNs have a lot more utility than that. E.g. hiding your real IP from websites to prevent geolocation or tying back to your real ID, preventing your ISP (and thus the US govt through PRISM etc) from logging your traffic, etc. Yes the details of what you do are encrypted through HTTPS but the servers you connect to and the times you do it are not. The CIA says they kill people based off metadata so I would at least try to shift the trust away from known collaborators like my ISP and towards groups like Mullvad to protect myself
I use DNS.SB and use DNS over HTTPS.
On Android, I use Nebulo, which I install through its F-Droid repository. It allows me to use DNS over HTTPS and offers DNS.SB as one of its options.