|
|
|
|
|
|
by sdrinf
3864 days ago
|
|
|
Script injection (see Comcast a few weeks ago), page manipulation (eg. pointing at download links with malicious side-load), keyword-based filtering (HTTP inspection). If you're using non-default DNS servers, you also get privacy on which site you're reading: all HTTP request headers also get TLS protection, which includes hostname, path, etc. And while outside of Tor, there's no protection for the IP address (so third parties can know you're reading a page on github), "a site hosted on github" encompasses a wide variety of content. |
|
|
That doesn't help, you can easily fingerprint a page from secondary requests or incoming/outgoing links.