Jackson Sippe
Jackson Sippe
你好 @crazysvn, 我是一名研究 TLS-in-TLS (在TLS隧道中建立的TLS连接) 的研究员,我所在的团队目前正进行一个项目,以确定这种流量是否以及如何在实际应用中被阻断。我们的合作者已经开发出在检测 TLS-in-TLS 流量的方法,并且我们已经在中国境内部署了实验以检测针对 Trojan 的封锁,但收效甚微。 如果您愿意就您了解的具体情况提供一些补充信息,这将对我们的项目有很多帮助。此外,也许我们的一些见解建议可以帮助您和其他社区成员减轻/缓解封锁。下面的这些问题将为我们发掘 GFW 如何检测和封锁这些代理提供非常有价值的信息。如果方便,您也可以直接通过电子邮件与我联系:[email protected]。 - 能否提供 Trojan 的详细配置信息:包括选择的端口以及版本等。 - 能否提供一些流量上的统计信息:每天的连接数、不同 IP 用户总数、传输的数据总量? - 服务器托管在哪里?您可以提供 ASN 或云服务商的名称。 - 您是否知晓用户正在使用哪种客户端以及这些客户端是怎样配置的? - 这种阻塞是什么时候开始出现的?端口封锁是否每一天发生在相同时间? -...
Hi, @hanshelm02. I have followed up via email from [email protected]. I look forward to hearing from you.
Hi @nametoolong, a couple of other researchers and myself have been trying to find evidence of tunneled traffic detection and blocking in deployment. Would you be willing to discuss this...
Marked as draft because this doesn't do exactly what I want yet. We want to be able to specify the length of the entire packet (payload and header) and then...
Currently, this PR has the ability to decrypt at least some portion of QUIC client initial traffic. I will test further with a variety of client traces to ensure that...
> * Can you add more detail to both the PR and comments in the documents around what you mean by decrypting QUIC payload? Would be helpful to have something...
Here are a couple of links for more details: [RFC 9000 21.1.2](https://datatracker.ietf.org/doc/html/rfc9000#name-protected-packets-2) - Describes packet protection and the initial packet encryption. [RFC 9001 5](https://datatracker.ietf.org/doc/html/rfc9001#name-packet-protection) - An in depth explanation of...
Hi @thearossman, I have implemented a significant number of changes and figured this is a good stopping point for now. You'll notice that the structure of the output has changed...
I'm glad you asked about that, I thought for a while about how to handle this situation and I'm open to whatever you think makes the most sense. Unfortunately, it...
That makes sense to me! Thank you for the clarification, I am still trying to wrap my head around all of the nuances of Retina. The latest commits add a...