undefined | Better HN

0 pointsrnhmjoj1mo ago0 comments

> they still see the URL so they can get the content if they want it

That's incorrect, a MitM can only reveal the server hostname by inspecting the SNI during the TLS handshake, but the HTTP request, including the URL and headers, is encrypted.

0 comments

4 comments · 1 top-level

pc861mo ago· 3 in thread

Surely your ISP can see every URL you visit if they have a reason to? They're routing the traffic.

rnhmjojOP1mo ago

No they can't. They obviously know the IP addresses, but that's not terribly useful since everything is behind a cloudflare proxy nowadays. The server hostname may provide some more information, if the server doesn't support ECH [1], but the full URL is encrypted.

https://en.wikipedia.org/wiki/Server_Name_Indication#Encrypt...

mandevil1mo ago

If you use HTTPS they can see that you hit wikipedia (they will see you are trying to do a DNS lookup for en.wikipedia.org), but they can't see that you are viewing https://en.wikipedia.org/wiki/Hundeprutterutchebane in particular- that is only available to someone who can read the body of the HTTP request, which with HTTPS is encrypted.

NetMageSCW1mo ago

Routing only shows the server IP address, which isn’t very useful if it is AWS or Azure or CloudFlare or some other CDN.

j / k navigate · click thread line to collapse