home.social
Sign in Create account

#encryptedclienthello — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #encryptedclienthello, aggregated by home.social.

  1. :mima_rule: Mima-sama @[email protected] ·

    You've got to be kidding me #Mozilla

    Why does     #Firefox need #HTTP2 for #EncryptedClientHello? Where in the goddamn spec does it say that #ECH needs HTTP/2?! First #DNSoverHTTPS or #DoH is required, and now HTTP/2? Really?

    Why can't you just let me disable HTTP/2 in peace and use HTTP/1.1 as all web servers should be using. Why does it have to be a choice on whether I can get additional     #privacy based on whether I'm using an arbitrary and useless update to the #HTTP protocol. It's just fucking full of politics. First you require TLS if one wants to use HTTP/2, and now HTTP/2 is required if one wants to encrypt their #SNI and the whole #ClientHello. No technical fucking reason at all other than to force people in their crusade against plain text and their obsession with chopping down latency (which didn't work btw which is why they're now pushing #HTTP3 which is just not HTTP anymore with its #UDP bullshit)

    This is what happens when you let politician-wannabes dictate your development

    #mozilla #firefox #http2 #encryptedclienthello #ech #dnsoverhttps
  2. Chaser Systems @[email protected] ·

    Google Chrome v117 turned on TLS Encrypted ClientHello by default (on 27 Sep?) This will impact the effectiveness and accuracy of outbound traffic filtering* - for those who've implemented it (regardless of vendor.) We've written a short blog post on disabling it with PowerShell, Windows Registry and Google Chrome UI for those who may need to roll this out ASAP and regain visibility. (Disclosure: we are a vendor of an outbound filtering solution and this has impacted our customers already.)

    *for many websites, the domain name visibility during an HTTPS handshake will no longer be available to firewalls/proxies (unless they were terminating.)

    chasersystems.com/blog/disabli

    #esni #tls #ech #encryptedclienthello

    #esni #tls #ech #encryptedclienthello
  3. [moved] Floppy 💾 @floppy ·

    💬 "Encrypted Client Hello, a new proposed standard that prevents networks from snooping on which websites a user is visiting, is now available on all Cloudflare plans."

    ❓ How does the internet like this?

    Links for further reading:

    The CloudFlare blog: Encrypted Client Hello - the last puzzle piece to privacy
    blog.cloudflare.com/announcing

    gHacks: The End of DNS-based Site Blocking is near
    ghacks.net/2023/10/07/the-end-

    #cloudflare #ech #encryptedclienthello #servernameindication #sni #esni
  4. Tarnkappe.info @[email protected] ·

    📬 Encrypted Client Hello: Das Ende der Sperrung von Piratenseiten?
    #Datenschutz #Internet #AntiPiraterie #Cloudflare #DNSBlockaden #ECH #EncryptedClientHello #ServerNameIndication #SNI tarnkappe.info/artikel/interne

    #datenschutz #internet #antipiraterie #cloudflare #dnsblockaden #ech
  5. TorrentFreak RSS @[email protected] ·

    Encrypted Client Hello (ECH) Effectively Defeats Pirate Site Blocking

    torrentfreak.com/encrypted-cli

    #encryptedclienthello #siteblocking #Cloudflare #Piracy #esni #ECH

    #ech #esni #piracy #cloudflare #siteblocking #encryptedclienthello