Both the request and response are fully encrypted – so the cookies and all headers are protected. About the only thing visible to an external sniffer is the host and remote address (IP) that you're requesting.
1
votes
All https is http over an encrypted connection i.e. the contents of the TCP/IP packets are encrypted.
We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.OkRead more
