Hey.
I really don't know where to start searching for help, so I just start here.
I am using FreeBSD 13.2 with Firefox 102.15.1esr and I want not to be spied on, so I use DNS over TLS as well. This should mean that the only thing an mitm attacker should see is encrypted traffic. So why the heck can I real plain text domain names in every request??? This is the outgoing traffic when I visit google on a freshly opened firefox:
All the dots are unprintable binary bytes, but the thing is, that you can clearly read fonts.gstatic.com there. And this is valid for every domain I visit. If this is working as intended, then I wonder why I am using dns over tls after all?
I really don't know where to start searching for help, so I just start here.
I am using FreeBSD 13.2 with Firefox 102.15.1esr and I want not to be spied on, so I use DNS over TLS as well. This should mean that the only thing an mitm attacker should see is encrypted traffic. So why the heck can I real plain text domain names in every request??? This is the outgoing traffic when I visit google on a freshly opened firefox:
Code:
[22.11.2023 12:31:38] IP4:TCP ip=10.0.10.3:26925 -> 172.217.168.67:443 host_dst=zrh04s15-in-f3.1e100.net ip_len=60
..kx...^E..T..E..<..@.@.ќ
.
..٨Ci-.._...........&#.............
rwe.....
[22.11.2023 12:31:38] IP4:TCP ip=10.0.10.3:26925 -> 172.217.168.67:443 host_dst=zrh04s15-in-f3.1e100.net ip_len=52
..kx...^E..T..E..4..@.@.Ѥ
.
..٨Ci-.._...27.....
.3.....
rwẻ.ǎ
[22.11.2023 12:31:38] 583 bytes from A8:5E:45:A6:E1:54 to AC:1F:6B:78:15:02 mactype=0x0800 contains:
IP4:TCP ip=10.0.10.3:26925 -> 172.217.168.67:443 host_dst=zrh04s15-in-f3.1e100.net ip_len=569
..kx...^E..T..E..9..@.@.ϟ
.
..٨Ci-.._...27.....
.5.....
rwe͉.ǎ............Ӛ...nC..ؼ.Z Kץ.Ӆ.Qj.I...... sF..@$.պ..R.lu..<..w9...4.z+..M.".......+./̨̩.,.0.
. ........./.5.............fonts.gstatic.com..........
.............................h2.http/1.1..........".
...........3.k.i... ...8..<.9y..EDu.y.g.......+(n`*O...A..U=.ۇ..`......0...
z.../.~.*`..ij..~._.:7/T.=*J.O.y*z.N..A=|..A.+........
..............................@..............................................................................................................
......................................
[22.11.2023 12:31:38] IP4:TCP ip=10.0.10.3:26925 -> 172.217.168.67:443 host_dst=zrh04s15-in-f3.1e100.net ip_len=52
..kx...^E..T..E..4..@.@.Ѥ
.
..٨Ci-.._...27.......?.....
rwe...Ǣ
[22.11.2023 12:31:38] IP4:TCP ip=10.0.10.3:26925 -> 172.217.168.67:443 host_dst=zrh04s15-in-f3.1e100.net ip_len=52
..kx...^E..T..E..4..@.@.Ѥ
.
..٨Ci-.._...27......;.....
rwe...Ǣ