@encthenet it requires a preshared key between the server and the client, so...
Conversation
Notices
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Monday, 21-Oct-2024 16:52:06 JST Ryan Castellucci :nonbinary_flag: -
Embed this notice
John-Mark Gurney (encthenet@flyovercountry.social)'s status on Monday, 21-Oct-2024 16:52:15 JST John-Mark Gurney Just a reminder, the IETF still has not figured out (published an RFC) on how to keep the servers that people visit private from their VPN or ISP provider. ESNI was scrapped in favor of ECH, but ECH is still in draft: https://datatracker.ietf.org/doc/draft-ietf-tls-esni/22/ .
This has been a known issue for decades, and even after the IETF pledged to take privacy and security seriously over a decade ago, this seriously privacy hole is still wide open.
(I hope ECH is beeter than ESNI in protecting privacy, will look.)
-
Embed this notice