On Thu, Oct 04, 2018 at 06:23:32AM +, ithor wrote:
> Ok, correct me if I'm wrong. Is this what happens in a meek request :
> 1. unencrypted http request with the hostname I want to connect to in
> cleartext.
> 2. encrypted https connection to the hostname.
> 3. encrypted (http?) relay
Sent with ProtonMail Secure Email.
‐‐‐ Original Message ‐‐‐
On Wednesday, October 3, 2018 4:25 PM, Andreas Krey wrote:
> On Wed, 03 Oct 2018 13:03:14 +, ithor wrote:
> ...
>
> > Can you elaborate upon that for the noob I am. If i understand you
> > correctly, when using domain
On Wed, 03 Oct 2018 13:03:14 +, ithor wrote:
...
> Can you elaborate upon that for the noob I am. If i understand you correctly,
> when using domain fronting, Tor basically spoofs or "hijacks" the ip address
> of an existing Azure server client ?
SNI: Server Name Indication. While setting
The IP address of the Azure server you're connecting to.
> How does the selection of the Azure server works ? Randomly ? If i understood
> well, domain-fronting servers are supposedly located geographically close to
> the origin of the browser request. Could it be that TBB selects an Azure
>
On Wed, Oct 03, 2018 at 12:25:52PM +, ithor wrote:
> So a meek request is sent in clear-text. What exact information is given ?
> The exact ip address of the Azure server, its geolocation ?
The IP address of the Azure server you're connecting to. In the case of
meek-azure the firewall would
On Wed, Oct 03, 2018 at 08:30:53AM -0400, James Bunnell wrote:
> I'm a little curious why some people don't take G Suite into consideration :)
Google clearly doesn't like seeing it's services used for censorship
circumvention.
Or they don't want to ruin their standing with the client who
has the name that is used in the SNI (and who takes the loss
when china should decide to block that b/c it's used by fronters).
Can you elaborate upon that for the noob I am. If i understand you correctly,
when using domain fronting,
On Wed, 03 Oct 2018 14:06:27 +, Jonathan Marquardt wrote:
...
> They did so supposedly because it voilated their terms of use.
It also probably violates a few RFCs, and they never advertised
this 'feature'.
> They probably don't want to ruin their relationships with totalitarian
> regimes.
I'm a little curious why some people don't take G Suite into consideration :)
On Wed, Oct 3, 2018 at 8:26 AM ithor wrote:
>
> ok, so for once i'll keep my fingers crossed for Microsoft...
>
> How should I imagine the connection until the Azure server. What does it tell
> the DPI ? Just that I'm
ok, so for once i'll keep my fingers crossed for Microsoft...
How should I imagine the connection until the Azure server. What does it tell
the DPI ? Just that I'm connecting to a close-to-my-country-based Microsoft CDN
?
On wikipage it's stated that
The technique works by using different
On Wed, Oct 03, 2018 at 08:38:52AM +, ithor wrote:
> ever since TBB 8, there's the new moat way to obtain private obfs4 bridges
> through a CAPTCHA. In the following webpage it's stated meek is used in
> order to communicate with the Tor bridges database. Now, my question is :
> which ones
Hi,
ever since TBB 8, there's the new moat way to obtain private obfs4 bridges
through a CAPTCHA. In the following webpage it's stated meek is used in order
to communicate with the Tor bridges database. Now, my question is : which ones
? In my country, domain fronting for Amazon and Google are
12 matches
Mail list logo
