21 points | by rdme an hour ago
4 comments
What’s the selling point of ODoH given the low uptake of ECH which means the name of the server you’re talking to is given away anyway?
They solve different things. ODoH hides your question, not who you're talking to.
I'd think that if you've got several leaks then patching one up is still forward progress even if it doesn't deliver a full fix immediately.
The relay is a systemd unit on a VPS, Caddy for TLS, SSRF-hardened (regex-strict hostnames, no IP literals). eTLD+1 same-operator check rejects relay+target run by the same org by default. HPKE is odoh-rs from Cloudflare
``` cargo install numa
# set mode = "odoh" in numa.toml ```
Repo: https://github.com/razvandimescu/numa
What’s the selling point of ODoH given the low uptake of ECH which means the name of the server you’re talking to is given away anyway?
They solve different things. ODoH hides your question, not who you're talking to.
I'd think that if you've got several leaks then patching one up is still forward progress even if it doesn't deliver a full fix immediately.
The relay is a systemd unit on a VPS, Caddy for TLS, SSRF-hardened (regex-strict hostnames, no IP literals). eTLD+1 same-operator check rejects relay+target run by the same org by default. HPKE is odoh-rs from Cloudflare
``` cargo install numa
# set mode = "odoh" in numa.toml ```
Repo: https://github.com/razvandimescu/numa