You may want to update this solution with The reality that TLS 1.3 encrypts the SNI extension, and the most significant CDN is undertaking just that: blog.cloudflare.com/encrypted-sni Needless to say a packet sniffer could just do a reverse-dns lookup for that IP addresses you might be connecting to. Notice on https://yogip162muy5.is-blog.com/profile
