t0fr@lemmy.ca to Privacy@lemmy.ml · 11 months agoNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.caimagemessage-square244fedilinkarrow-up1590arrow-down118
arrow-up1572arrow-down1imageNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.cat0fr@lemmy.ca to Privacy@lemmy.ml · 11 months agomessage-square244fedilink
minus-squareQuazarOmegaAlinkfedilinkarrow-up1·10 months agoIf allowed, doesn’t DoH/DoT mitigate this issue?
minus-squareTrailblazing Braille Taser@lemmy.dbzer0.comlinkfedilinkarrow-up6·10 months agoNot if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
minus-squareQuazarOmegaAlinkfedilinkarrow-up1·10 months agoOh that’s a thing? That’s kinda frightening
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up2arrow-down1·10 months agoNot necessarily, as the browser is still logging the history.
minus-squareQuazarOmegaAlinkfedilinkarrow-up2arrow-down1·10 months agoWell that’s what private mode is for, to dump the local data after closing the browser session
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1·10 months agoI know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
minus-squareQuazarOmegaAlinkfedilinkarrow-up1·10 months agoPretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up2·10 months agoThey control the browser settings itself. It’s either a work managed device or profile.
If allowed, doesn’t DoH/DoT mitigate this issue?
Not if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
Oh that’s a thing? That’s kinda frightening
Not necessarily, as the browser is still logging the history.
Well that’s what private mode is for, to dump the local data after closing the browser session
I know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
Pretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
They control the browser settings itself. It’s either a work managed device or profile.
Ah ok that makes sense