think of it this way. if you query your VPN provider for DNS there's nothingeqving the VPN that can be snooped. if you set it 3rd party... lots can happen
Discussion
Trust the VPN provider vs trust the 3rd party encrypted DNS provider? That DNS traffic can't be read, even by the VPN provider, and ideally it should be going out via the DNS tunnel. It could then be better to logically separate these two providers?
nope
I tried what you are suggesting. it leaks. and yes I do trust Proton's VPN and their DNS. I get why you think it's better, and so did I when I first started with privacy and security but it's not a good idea.
Why would you trust Google DNS (or CloudFlare) anyway? Google's business is selling user data, I highly highly doubt they are not tracking DNS and selling it. They just want your DNS queries rather than your ISP having it.
do you want me to show you DNS leak tests both ways?
It's privacy washing basically