Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

well, not the whole url, obviously, otherwise the router wouldn't know where to send the request


The entire URL is encrypted, the router doesn't need to know anything about the URL to route the packets. The only thing that can leak when you make an HTTPS connection is the DNS query.


The SNI leaks without ESNI:

https://en.wikipedia.org/wiki/Server_Name_Indication#Securit...


TLS server name indication can also leak your host, sadly.


You are confusing layer 4 and later 7 concepts.

Spend some time with wireshark running while you visit “google.com” in a web browser and you’ll get a better intuition on the topic.


that makes sense, thanks




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: