* At least one customer of the CDN I work for (namely my own website) uses an IP address.
Sure, I get it. Which is why I said “in our experience.” :) * Shared hosting behind a CDN does exist where clients of the service provider are signed up to the CDN, and it might be interesting to use ESNI there but the privacy risks are less extreme absent a global passive adversary. Protecting client to shared infrastructure is what ESNI aims to do. The real point of this note: strong +1 for this.
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
