I don't know, why do you follow the laws of the US? (Bear in mind, I live in the US, though I was born in Scotland.) Something something as enacted by democratically elected representatives something something.
There are only three primary global empires right now: Russia, China, and Pax Judaica (Israel and its vassal state, the USA). Europe does not fall under the influence of Russia or China to the same degree as the third one. The EU is a rudderless ship due to weak leadership and energy starvation.
Assuming you don't have ECH, you leak the question (in practical terms) to your ISP, and you leak your question to the DNS provider. With ODoH you plug the latter leak. Plugging that first leak is then still a problem (solved separately) but it's orthogonal to the second.
Even with ECH, where you plug the TLS leak, you have many more holes to plug. IP address might not be shared or might be shared across too few properties, and then traffic profile after the initial connect (to retrieve all the sub-resources) can identify destinations.
It's not limited to the ISP and DNS provider. Thanks to being plaintext it's anyone anywhere along the network path (unless you were already using DoH of course, but sans-ECH is still the entire path regardless).
Anyway I agree with you that plugging leaks is good (notice my adjacent comment). My response there was intended to provide clarification regarding the preceding exchange.
Between so many service operators intentionally purchasing MitM as a service from the cloud providers and the ever increasing proliferation of centralized captcha solutions that work via fingerprinting the entire situation seems increasingly hopeless.
If relay and target are operated by the same provider, there is no collusion. Collusion occurs between 2+ parties. You have stipulated that they are the same party.
The easiest way to become a F500 company is to start as an F5 company, then financialize your whole business, stop innovating, fire anyone effective, and give the executives huge bonuses.
reply