If your browser is properly configured, it’ll recognize a MITM attack, so you’ll know if your traffic is properly encrypted because it checks root certs against a known good set. The only concern is domain name leakage (both from DNS and SNI), but that’s a privacy thing, not a security thing. DoH fixes the DNS issue, so consider that for a low hanging fruit privacy win.
If you’re accessing things outside a browser… don’t do that on public WiFi unless you can confirm it verifies certificates.
It absolutely does provide security on a public WiFi network.
Not really.
If your browser is properly configured, it’ll recognize a MITM attack, so you’ll know if your traffic is properly encrypted because it checks root certs against a known good set. The only concern is domain name leakage (both from DNS and SNI), but that’s a privacy thing, not a security thing. DoH fixes the DNS issue, so consider that for a low hanging fruit privacy win.
If you’re accessing things outside a browser… don’t do that on public WiFi unless you can confirm it verifies certificates.