t0fr@lemmy.ca to Privacy@lemmy.ml · 2 years agoNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.caimagemessage-square38fedilinkarrow-up114arrow-down10
arrow-up114arrow-down1imageNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.cat0fr@lemmy.ca to Privacy@lemmy.ml · 2 years agomessage-square38fedilink
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up0·2 years agoIf allowed, doesn’t DoH/DoT mitigate this issue?
minus-squareTrailblazing Braille Taser@lemmy.dbzer0.comlinkfedilinkarrow-up1·2 years agoNot if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·2 years agoOh that’s a thing? That’s kinda frightening
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up0·2 years agoNot necessarily, as the browser is still logging the history.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·2 years agoWell that’s what private mode is for, to dump the local data after closing the browser session
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1·2 years agoI know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·2 years agoPretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up2·2 years agoThey control the browser settings itself. It’s either a work managed device or profile.
If allowed, doesn’t DoH/DoT mitigate this issue?
Not if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
Oh that’s a thing? That’s kinda frightening
Not necessarily, as the browser is still logging the history.
Well that’s what private mode is for, to dump the local data after closing the browser session
I know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
Pretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
They control the browser settings itself. It’s either a work managed device or profile.
Ah ok that makes sense