t0fr@lemmy.ca to Privacy@lemmy.ml · 1 year agoNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.caimagemessage-square209fedilinkarrow-up1469arrow-down114
arrow-up1455arrow-down1imageNot that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted tolemmy.cat0fr@lemmy.ca to Privacy@lemmy.ml · 1 year agomessage-square209fedilink
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·1 year agoIf allowed, doesn’t DoH/DoT mitigate this issue?
minus-squareTrailblazing Braille Taser@lemmy.dbzer0.comlinkfedilinkarrow-up5·1 year agoNot if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·1 year agoOh that’s a thing? That’s kinda frightening
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up2·1 year agoNot necessarily, as the browser is still logging the history.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·1 year agoWell that’s what private mode is for, to dump the local data after closing the browser session
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up2·1 year agoI know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
minus-squareQuazarOmega@lemy.lollinkfedilinkarrow-up1·1 year agoPretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
minus-squarelejsh@lemmy.mllinkfedilinkarrow-up1·1 year agoThey control the browser settings itself. It’s either a work managed device or profile.
If allowed, doesn’t DoH/DoT mitigate this issue?
Not if your employer has installed a root CA on your machine, enabling them to man-in-the-middle all your TLS connections.
Oh that’s a thing? That’s kinda frightening
Not necessarily, as the browser is still logging the history.
Well that’s what private mode is for, to dump the local data after closing the browser session
I know I’m here a week later, but a large number of system administrators disable browser proxy systems, dns over https, and incognito. It’s a neverending war.
Pretty much, but (noob question) how can they block DoH, wouldn’t they have to block HTTPS completely as well?
They control the browser settings itself. It’s either a work managed device or profile.
Ah ok that makes sense