Pretty much my understanding. I think it was mostly done to stop antivirus vendors from making the browser unstable with their modules.
Yes this is my point, so before you can actually block this DLL, it should first be loaded, which means it's indeed not really a good anti-malware protection method. For example, a banking trojan could plunder your account and after the damage is done you could block it from loading once again in browser memory. But now that I think of it, if it can block HMPA's DLL, it might as well be designed to block untrusted DLL's in real time? Because apparently it does have the technical capabilty to do this, even from an advanced tool like HMPA.
Just a question. If I am using a VPN app that "Encrypts your communications and website traffic for your security and privacy," how important is to have that Secure (encrypted) SNI?
Hello @zmechys Perhaps you have already seen and read this: What is encrypted SNI? | How ESNI works Even though you may be using a VPN service, some domains reject connections from some known VPNs. HTH
To summarize it. With a (good) VPN everything is encrypted; therefore, you don't need that encrypted SNI, unless... Unless, you can't trust your VPN.