undefined | Better HN

0 pointscodedokode1y ago0 comments

Is that directive the reason why website operators do not want to implement ECH (Encrypted Client Hello) which allows to encrypt server name in TLS connection? I tried googling this, but Cloudflare blog only says that they disabled ECH without disclosing the reasons: [1]

[1] https://community.cloudflare.com/t/early-hints-and-encrypted...

0 comments

stavros1y ago

They never re-enabled it?

codedokodeOP1y ago

No, and other sites seem to not support it. This is a list of top 10 000 sites and it seems that virtually nobody supports this TLS extension: https://divested.dev/misc/ech.txt .

stavros1y ago

That's a real shame, I wonder if the decision to not enable it really is coming "from above".

j / k navigate · click thread line to collapse

0 pointscodedokode1y ago0 comments

[1] https://community.cloudflare.com/t/early-hints-and-encrypted...

0 comments

stavros1y ago

They never re-enabled it?

codedokodeOP1y ago

No, and other sites seem to not support it. This is a list of top 10 000 sites and it seems that virtually nobody supports this TLS extension: https://divested.dev/misc/ech.txt .

stavros1y ago

That's a real shame, I wonder if the decision to not enable it really is coming "from above".

j / k navigate · click thread line to collapse