this post was submitted on 24 Jul 2023
312 points (97.9% liked)

Technology

59174 readers
1954 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Man Found Guilty of Child Porn, Because He Ran a Tor Exit Node::undefined

you are viewing a single comment's thread
view the rest of the comments
[–] beatle@aussie.zone 8 points 1 year ago (2 children)

The Server Name Identification (SNI) standard means that the hostname may not be encrypted if you're using TLS. Also, whether you're using SNI or not, the TCP and IP headers are never encrypted. (If they were, your packets would not be routable.)

https://stackoverflow.com/questions/187655/are-https-headers-encrypted#187679

There is work to hopefully improve this situation for SNI at least: https://datatracker.ietf.org/doc/draft-ietf-tls-esni/.

[–] Findmysec@infosec.pub 1 points 4 months ago

As it turns out, eSNI (to take that forward, eCH) has become common in modern browsers with a supported DNS provider