💾 Archived View for bbs.geminispace.org › u › totroptof › 2576 captured on 2024-02-05 at 15:03:36. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-12-28)
-=-=-=-=-=-=-
Re: "Has there ever been a discussion regarding use of DoH or..."
Yeah, I was just reading about ECH. It seems to involve a separate, pre-TLS-handshake handshake using keys fetched from DNS records. The whole use-TLS-to-encrypt-HTTP-to-encrypt-DNS-to-encrypt-pre-TLS-to-encrypt-TLS thing is a little mind-melting to me 😅
2023-06-29 · 7 months ago
☀️ mike · 2023-06-30 at 18:23:
It's definitely not simple :)
Has there ever been a discussion regarding use of DoH or DoT for name resolution in Gemini clients? I was just thinking that the emphasis in Geminispace on single or few-tenant capsules partially neuters the confidentiality of TLS given plaintext DNS… but I guess even with encrypted DNS queries a similar issue crops up with IP addresses.