Firefox

17154 readers

62 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago

MODERATORS

[email protected]

Say (an encrypted) hello to a more private internet. | The Mozilla Blog (blog.mozilla.org)

submitted 11 months ago by [email protected] to c/[email protected]

4 comments fedilink hide all child comments

r/privacy

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 0 points 11 months ago (2 children)

If a packet is traversing an ISP's network the ISP should have to know where it is coming from and where it is going, right? So even if you "encrypt the first hello" packet, the ISP would still know where it was routed, right?

I'll freely admit I have only a very basic (and likely outdated) understanding of IP networking, but I don't see how this protects my browsing habits from my ISP. Even if they can't understand my "hello" to lemmy.ml, they still know I'm talking to lemmy.ml's IP address about something.

What am I missing?

[–] [email protected] 1 points 11 months ago

Your ISP is mostly going to be seeing AWS, Azure, GCP, Cloudflare, etc IP addresses.

[–] [email protected] 1 points 11 months ago* (last edited 11 months ago)

They would know you’re talking to that IP, not necessarily lemmy.ml. It is very common for multiple sites to be hosted on the same ip. The reason SNI exists is so the browser can tell the server which site it was looking for in an encrypted session. If it is 1:1 then it would be true.