Is that directive the reason why website operators do not want to implement ECH ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		codedokode on Aug 24, 2024 \| parent \| context \| favorite \| on: Telegram founder Pavel Durov arrested at French ai... Is that directive the reason why website operators do not want to implement ECH (Encrypted Client Hello) which allows to encrypt server name in TLS connection? I tried googling this, but Cloudflare blog only says that they disabled ECH without disclosing the reasons: [1] [1] https://community.cloudflare.com/t/early-hints-and-encrypted...

stavros on Aug 25, 2024 [–]

They never re-enabled it?

codedokode on Aug 25, 2024 | [–]

No, and other sites seem to not support it. This is a list of top 10 000 sites and it seems that virtually nobody supports this TLS extension: https://divested.dev/misc/ech.txt .

stavros on Aug 25, 2024 | | [–]

That's a real shame, I wonder if the decision to not enable it really is coming "from above".

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact