You may want to update this response with The point that TLS 1.3 encrypts the SNI extension, and the greatest CDN is accomplishing just that: weblog.cloudflare.com/encrypted-sni Naturally a packet sniffer could just do a reverse-dns lookup for that IP addresses you might be connecting to. This will likely alter in https://reginak625pqv1.pennywiki.com/user
