L4sBot@lemmy.worldMB to Technology@lemmy.worldEnglish · 3 年前Man Found Guilty of Child Porn, Because He Ran a Tor Exit Nodelowendbox.comexternal-linkmessage-square60fedilinkarrow-up1324file-textcross-posted to: slackernews@lemmy.worldtechnology@beehaw.orgtechnews@radiation.partyhackernews@derp.foo
arrow-up1324external-linkMan Found Guilty of Child Porn, Because He Ran a Tor Exit Nodelowendbox.comL4sBot@lemmy.worldMB to Technology@lemmy.worldEnglish · 3 年前message-square60fedilinkfile-textcross-posted to: slackernews@lemmy.worldtechnology@beehaw.orgtechnews@radiation.partyhackernews@derp.foo
minus-squarebeatle@aussie.zonelinkfedilinkEnglisharrow-up8·3 年前 The Server Name Identification (SNI) standard means that the hostname may not be encrypted if you’re using TLS. Also, whether you’re using SNI or not, the TCP and IP headers are never encrypted. (If they were, your packets would not be routable.) https://stackoverflow.com/questions/187655/are-https-headers-encrypted#187679
minus-squaresloppy_diffuser@sh.itjust.workslinkfedilinkEnglisharrow-up3·3 年前There is work to hopefully improve this situation for SNI at least: https://datatracker.ietf.org/doc/draft-ietf-tls-esni/.
minus-squareFindmysec@infosec.publinkfedilinkEnglisharrow-up1·2 年前As it turns out, eSNI (to take that forward, eCH) has become common in modern browsers with a supported DNS provider
https://stackoverflow.com/questions/187655/are-https-headers-encrypted#187679
There is work to hopefully improve this situation for SNI at least: https://datatracker.ietf.org/doc/draft-ietf-tls-esni/.
As it turns out, eSNI (to take that forward, eCH) has become common in modern browsers with a supported DNS provider