It's even riskier when you use Google chrome without enabling Enhanced Mode because some components of Google chrome (particularly the DNS prefetching,...) bypasses proxy even though it's configured to listen to surge socks 5 service via 127.0.0.1:6153 using a proxy tool like proxy switchyOmega, foxyproxy, etc. Thus, it initiates a direct connection using either TCP or UDP which are not blocked by the http3/quic module without Enhanced Mode.
