On 05/11/2019 13:42, Tom Hughes wrote:
I don't think one CDN deploying a non-standard extension can reasonably be described as meaning that SNI is now encrypted. Yes it is encrypted if you're using a special test version of one specific browser and you access a site run by one of a handful of providers that support that on the server side.
Looks like release Firefox does have it now, but not enabled by default - there is a network.security.esni.enabled configuration option that would have to be turned on. Tom -- Tom Hughes (tom@xxxxxxxxxx) http://compton.nu/ _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
