Man Found Guilty of Child Porn, Because He Ran a Tor Exit Node::undefined
8 points
The Server Name Identification (SNI) standard means that the hostname may not be encrypted if you’re using TLS. Also, whether you’re using SNI or not, the TCP and IP headers are never encrypted. (If they were, your packets would not be routable.)
https://stackoverflow.com/questions/187655/are-https-headers-encrypted#187679
3 points
There is work to hopefully improve this situation for SNI at least: https://datatracker.ietf.org/doc/draft-ietf-tls-esni/.
1 point