AutomagicallyAwesome t1_iw1mj1y wrote on November 12, 2022 at 6:19 AM

This just feels like fear mongering to sell VPN subscriptions.

Unless India is running some huge man in the middle attack on HTTPS certificates then it's not technically possible for a government to spy on you without cooperation from whatever site you're using. It's really only DNS lookups that are unencrypted in normal web browsing.

Suspicious-Safety679 t1_iw1urb7 wrote on November 12, 2022 at 8:10 AM

Exactly!

I believe some totalitarian states require installation of a state certificate. Without this control, it's not much you can "see", unless you have access to both ends.

As for DNS, it's easy to set up free secure DNS up on your router and phone. Of course that means you should trust that DNS provider more than your ISPs.

[deleted] t1_iw2o874 wrote on November 12, 2022 at 2:20 PM

[deleted]

RequirementInitial72 t1_iw406sq wrote on November 12, 2022 at 8:04 PM

Why ?

If ISPs cooperate why should this be an issue.

Maybe not realtime but logs can provide all relevant info

BumpyRocketFrog t1_iw4wm64 wrote on November 12, 2022 at 11:59 PM

Technically ISPs can still see what sites you are going to - as they can see the IP addresses that you are connecting to; they just can’t see what you were doing on that site.

Additionally, if you are using your ISPs DNS server in your router or pc … every time your browser does a dns lookup you are telling the DNS server what site you are going to.

trevaaar t1_iw6ltmh wrote on November 13, 2022 at 10:15 AM

SNI is also not encrypted in most cases, so an ISP could still see what domains you're connecting to even if you're using encrypted third party DNS.

[deleted] t1_iw2o6bo wrote on November 12, 2022 at 2:19 PM

[deleted]