I don’t quite get what the point is. No matter how good you encrypt the server name, the destination IP address will always be visible. Are there that many webservers sharing the same IP, that this makes a noticeable impact? Am I missing something?

Hard disagree. I do not want to have 2FA for every shittly little thing I do not care about.