| ▲ | rdme 6 hours ago |
| The relay sees IP + ciphertext, the target sees question + relay's IP. No single party gets both |
|
| ▲ | petcat 6 hours ago | parent [-] |
| What if the relay and target are being operated by the same provider? The relay controls where the question is sent right? They can collude? |
| |
| ▲ | rdme 6 hours ago | parent [-] | | no, you are actually telling the relay where to redirect your question from the start (because you are encrypting the question with the public key of the destination resolver) - the relay sending the question where it wants would result in the destination to not be able to decrypt it |
|
