I've been logging the use of SNI for a potential project and...

ChipTuner

npub1qdjn8j4gwgmkj3k5un775nq6q3q7mguv5tvajstmkdsqdja2havq03fqm7

hex

51b4fbe8ee0b8fdb8f81ee335b11f1294358f9bce8c5c1dc25196ef449e0373b

nevent

nevent1qqs9rd8marhqhr7m37q7uv6mz8cjjs6clx7w33wpmsj3jmh5f8srwwcprpmhxue69uhhyetvv9ujuem4d36kwatvw5hx6mm9qgsqxefne258ydmfgm2wfl02fsdqgs0d5wx29kweg9amxcqxew4t7kq046mnc

Kind-1 (TextNote)

2026-03-17T15:15:31Z

I've been logging the use of SNI for a potential project and it appears that basically all legit clients use unencrypted SNI. I know the spec says it's optional and don't rely on it, or encryption is additionally optional, but it appears that plain text SNI has a 99% hit, at least on the traffic I see.

Raw JSON

{
  "kind": 1,
  "id": "51b4fbe8ee0b8fdb8f81ee335b11f1294358f9bce8c5c1dc25196ef449e0373b",
  "pubkey": "036533caa872376946d4e4fdea4c1a0441eda38ca2d9d9417bb36006cbaabf58",
  "created_at": 1773760531,
  "tags": [],
  "content": "I've been logging the use of SNI for a potential project and it appears that basically all legit clients use unencrypted SNI. I know the spec says it's optional and don't rely on it, or encryption is additionally optional, but it appears that plain text SNI has a 99% hit, at least on the traffic I see. ",
  "sig": "d7fbbf176db8514744ed833b633fd973b0f9ca86a44a61c726fb677702d8d14bbfc74de10f0aa7b138d2b08404a42f733cd59448f28c25dfa311a6205402f6a0"
}