Giter Club home page Giter Club logo

Comments (18)

ipid avatar ipid commented on June 26, 2024 13

恭喜楼主重新发明 v2ray

from shadowsocks-org.

hellofwy avatar hellofwy commented on June 26, 2024

代码更有说明力。

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

总是先有idea才有代码,不是么。
而且如果这个idea被否定,那么代码写出来也没用。

from shadowsocks-org.

hellofwy avatar hellofwy commented on June 26, 2024

自有自己可以否定自己

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

请你拿出论据和论证。。。不要说空话

from shadowsocks-org.

breakwa11 avatar breakwa11 commented on June 26, 2024

早期很多工具都是用的https代理,最后都一一倒下了

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

伪装成网站,如何探测?我不相信早期工具对SSL下层协议伪装,特别是伪装成一个functioning的website

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

也许有人不是很明白,在这里我写一下服务器的伪代码。

函数 新连接() {
    TLS握手
    数据解密后读到第一个\r\n
    如果已经读到的数据是HTTP {
        路由到Apache
    }
    如果已经读到的数据是shadowsocks头 {
        检测合法性
        如果不合法 {
            返回HTTP 400错误
        } 否则 {
            路由到shadowsocks
        }
}

from shadowsocks-org.

qinyuhang avatar qinyuhang commented on June 26, 2024

这样的话,焦点就都转移到了证书上了吗?如果GFW伪装成一个用户,购买某家的服务,获取到了该供应商的证书,直接封掉所有使用该证书的链接呢?GFW接下来就寻找类似状态的证书,进行封锁,是否会造成其他风险呢?

from shadowsocks-org.

Mygod avatar Mygod commented on June 26, 2024

This has been discussed long ago. Gfw can simply block your certificate.

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

这样的话,焦点就都转移到了证书上了吗?如果GFW伪装成一个用户,购买某家的服务,获取到了该供应商的证书,直接封掉所有使用该证书的链接呢?GFW接下来就寻找类似状态的证书,进行封锁,是否会造成其他风险呢?

每一台服务器签一个证书,一个证书不会包含其他服务器的信息。

你说的类似状态是指什么状态?

PS:不管是什么协议,gfw直接购买服务探测都是无解的啊。

from shadowsocks-org.

yvbbrjdr avatar yvbbrjdr commented on June 26, 2024

This has been discussed long ago. Gfw can simply block your certificate.

Wanna see the discussion.

from shadowsocks-org.

hellofwy avatar hellofwy commented on June 26, 2024

我不认为:“半年来shadowsocks以及shadowsocksR的更新都是在做这件事情”即“不被检测出服务器在提供翻墙服务”

ss-libev 引入混淆是最初为了 QoS,插件化是为了方便扩展。引入 AEAD 是为了防篡改数据包。增加随机数长度是为了防止破解密钥。

TLS 相关讨论请搜索 shadowsocks 组织下个各项目的 issues。或者使用搜索引擎。

from shadowsocks-org.

arloor avatar arloor commented on June 26, 2024

楼主的意思是说,在本地客户端和远程服务端之间加上ssl加密吗?

from shadowsocks-org.

MaoJianwei avatar MaoJianwei commented on June 26, 2024

我也一直好奇,为什么shadowsocks还不支持SSL。。。顶楼主,早日开发成功并merge

from shadowsocks-org.

LBYPatrick avatar LBYPatrick commented on June 26, 2024

@yvbbrjdr 不要跟他计较了,你看看@hellofwy的Github项目就知道了:joy:无需多言

from shadowsocks-org.

MaoJianwei avatar MaoJianwei commented on June 26, 2024

from shadowsocks-org.

abc123lzf avatar abc123lzf commented on June 26, 2024

然而经我实验发现利用SSL加密翻墙效果还不错,性能和ShadowsocksR相当。可以参考我的项目flyingsocks

from shadowsocks-org.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.