Thanks to zlg [0] for the note on disabling DNS-over-https. I
routinely use ssh-tunneled socks proxies to route my DNS and web
traffic through, so for me DoH is pointless. Even if it wasn't, I
would never rely on DoH through a central provider like
Cloudflare. I do use Firefox though - even with its issues, I think
it is still the most configurable browser when it comes to my own
use-cases and privacy in general. But yes, I agree the web is a mess
and it's frustrating how essential it all is to modern life.
My own workarounds include separate Firefox profiles - for work and
personal, the personal one is further segregated using tab
containers. So, for example, online banking is isolated into one tab
container and doesn't mix with the container used for my posteo
webmail or the one dedicated to online shopping. It seems to work
well once you get it setup.
[0]
gopher://zaibatsu.circumlunar.space/0/%7ezlg/0015_disable-doh.txt