You may want to update this answer with The point that TLS one.3 encrypts the SNI extension, and the most significant CDN is doing just that: blog.cloudflare.com/encrypted-sni Needless to say a packet sniffer could just do a reverse-dns lookup for the IP addresses you might be connecting to.@Pacerier: hacks date not surprisingly, but what I was ref… Read More