> On Jun 7, 2016, at 11:39 AM, Blaxton <[email protected]> wrote: > > For blind tunneling, Is there going to be two ports LISTENING on ATS, one for > HTTP and one for HTTPS and blind tunneling to provide connect method ? > or both connect method and HTTP connection can be served with one port.
No, one port (typically 8080, but doesn’t really matter). Most browsers until recently do not support CONNECT over HTTPS, i.e. it has to be over non-TLS. I think Chrome and Firefox have added support for doing CONNECT tunneling over HTTPS, which hides the hostname from pervasive monitoring. — leif
