As I understand it, SNI slicing helps obscure the presence of the SNI field in the TLS ClientHello by splitting it into two chunks. The idea, it seems, is to make it more difficult for third-party network filters or DPI systems to detect or extract the SNI reliably.
@[email protected], @[email protected], thank you for the help and the links — things are a bit clearer now.
As I understand it, SNI slicing helps obscure the presence of the SNI field in the TLS ClientHello by splitting it into two chunks. The idea, it seems, is to make it more difficult for third-party network filters or DPI systems to detect or extract the SNI reliably.