• 0 Posts
  • 2 Comments
Joined 1Y ago
cake
Cake day: Jun 30, 2023

help-circle
rss

CDNs muddy those reverse IP lookups. Encrypted DNS (not from your ISP!) + Encrypted Client Hello are effective in masking what site on a CDN is being accessed.


A good chunk of the web uses CDNs (content delivery networks) which puts a bunch sites behind the same IP and those gateways rely on SNI to figure out which site to send to the requestor.