JonSnowWhite
JonSnowWhite
@HectorHW Thanks for the info!
Should Record Fragmentation not work standalone, it can hopefully be combined with TCP fragmentation. That might be something to try out for circumvention tools like XRay. Especially when the TCP...
I agree: as long as other parts of the ClientHello are unnecessary your implementation is easier and faster. ~~I'd still vouch for the acceptance of 0x0303 and 0x0302 as valid...
You want to decrease the SEQ number of the initial SYN-ACK packets, right? As you said we always need TLS for that and I imagine the seq number changes for...
> > > > `cloudflare-ech.com` 是必要的吗 > > > > > > > > > 不是啊,这个是外层的明文 SNI,似乎全部启用了 ECH 的、使用 Cloudflare 网站的外层 SNI 都是一样的。 No, this is outer plaintext SNI, it...
The [ECH draft ](https://datatracker.ietf.org/doc/draft-ietf-tls-esni/) allows servers to reject different SNI hostnames than the one specified in the ECH Config: ``` Once the server has chosen the correct ECHConfig, it MAY...
It will be interesting to see how ECH blocking in Russia changes once more servers/CDNs start supporting it
Does this type of TLS MITM persist in Kazakhstan? We could not trigger this behavior on any websites on the Tranco Top 1M list (AS44477). 360tv.ru astrakhan.sm.news compromat.ru cont.ws knews.kg...
you could try to use both TCP segmentation and TLS fragmentation at the same time. Could work... especially when the fragments dont align
That's worrisome. I hope to monitor it somewhat for the rest of the GFW.