redwood icon indicating copy to clipboard operation
redwood copied to clipboard
verified publisher icon andybalholm

I am wondering about ESNI and ECH, fortigate has a solution but Squid-Cache not yet (for the intercept part..)

Open elico opened this issue 1 year ago • 2 comments

I was wondering if there would be work on this part from your side @andybalholm ?

elico avatar Aug 19 '24 01:08 elico

Encrypted client hello sounds like something we should need to do something about, but we haven't seen any sign of it in the wild. It would be much easier to develop a solution for it if we knew of at least one browser/website combination where it has an observable effect on Redwood (such as not being able to SSLBump a site).

andybalholm avatar Aug 19 '24 16:08 andybalholm

FWIW, mitmproxy 11 released today put some effort into ECH and HTTPS/3

https://mitmproxy.org/posts/releases/mitmproxy-11/

mrbluecoat avatar Oct 05 '24 02:10 mrbluecoat