adingbatponder 
👾Shocked that it has taken me so long, thanks to a heads-up from a friend & #nixos via #claudecode, to see that I should have set up:
(1) #ECH on my #reverseproxy serving my sites
(2) #DoT on my daily driver.
#DNS url names (web addresses) are *not* #encrypted by default even on sensible operating systems!
The incessant leakage to #ISP & intermediaries of site names visited in 99.9% of cases is an egregious #privacy issue I never knew of. Using #DoH is next? All fixes rely on #CloudFlare OMG
(1) #ECH on my #reverseproxy serving my sites
(2) #DoT on my daily driver.
#DNS url names (web addresses) are *not* #encrypted by default even on sensible operating systems!
The incessant leakage to #ISP & intermediaries of site names visited in 99.9% of cases is an egregious #privacy issue I never knew of. Using #DoH is next? All fixes rely on #CloudFlare OMG
Hugo