Enforce TLS #97
Description
This is a bit of a scope expansion, but it would be interesting to have an option to enforce that TCP streams (after the SOCKS5 handshake) begin with a TLS handshake. This would essentially be an alternative to TLS-Guard from Subgraph, and we could probably borrow some of their code for this.
Main benefit is flagging applications that send communications via cleartext. In particular, it's likely to flag bugs in applications that use onion services and aren't designed to leverage Whonix.