t0fr@lemmy.ca to Privacy@lemmy.ml · 11 个月前Not that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.caimagemessage-square138fedilinkarrow-up1584arrow-down118
arrow-up1566arrow-down1imageNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.cat0fr@lemmy.ca to Privacy@lemmy.ml · 11 个月前message-square138fedilink
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up0·11 个月前If allowed, doesn’t DoH/DoT mitigate this issue?
minus-squareTrailblazing Braille Taser@lemmy.dbzer0.comlinkfedilinkarrow-up5·11 个月前Not if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1arrow-down1·11 个月前Not necessarily, as the browser is still logging the history.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1arrow-down1·11 个月前Well that’s what private mode is for, to dump the local data after closing the browser session
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1·10 个月前I know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up0·10 个月前Pretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1·10 个月前They control the browser settings itself. It’s either a work managed device or profile.
If allowed, doesn’t DoH/DoT mitigate this issue?
Not if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
Not necessarily, as the browser is still logging the history.
Well that’s what private mode is for, to dump the local data after closing the browser session
I know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
Pretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
They control the browser settings itself. It’s either a work managed device or profile.
Ah ok that makes sense