Comments (18)
恭喜楼主重新发明 v2ray
from shadowsocks-org.
代码更有说明力。
from shadowsocks-org.
总是先有idea才有代码,不是么。
而且如果这个idea被否定,那么代码写出来也没用。
from shadowsocks-org.
自有自己可以否定自己
from shadowsocks-org.
请你拿出论据和论证。。。不要说空话
from shadowsocks-org.
早期很多工具都是用的https代理,最后都一一倒下了
from shadowsocks-org.
伪装成网站,如何探测?我不相信早期工具对SSL下层协议伪装,特别是伪装成一个functioning的website
from shadowsocks-org.
也许有人不是很明白,在这里我写一下服务器的伪代码。
函数 新连接() {
TLS握手
数据解密后读到第一个\r\n
如果已经读到的数据是HTTP {
路由到Apache
}
如果已经读到的数据是shadowsocks头 {
检测合法性
如果不合法 {
返回HTTP 400错误
} 否则 {
路由到shadowsocks
}
}
from shadowsocks-org.
这样的话,焦点就都转移到了证书上了吗?如果GFW伪装成一个用户,购买某家的服务,获取到了该供应商的证书,直接封掉所有使用该证书的链接呢?GFW接下来就寻找类似状态的证书,进行封锁,是否会造成其他风险呢?
from shadowsocks-org.
This has been discussed long ago. Gfw can simply block your certificate.
from shadowsocks-org.
这样的话,焦点就都转移到了证书上了吗?如果GFW伪装成一个用户,购买某家的服务,获取到了该供应商的证书,直接封掉所有使用该证书的链接呢?GFW接下来就寻找类似状态的证书,进行封锁,是否会造成其他风险呢?
每一台服务器签一个证书,一个证书不会包含其他服务器的信息。
你说的类似状态是指什么状态?
PS:不管是什么协议,gfw直接购买服务探测都是无解的啊。
from shadowsocks-org.
This has been discussed long ago. Gfw can simply block your certificate.
Wanna see the discussion.
from shadowsocks-org.
我不认为:“半年来shadowsocks以及shadowsocksR的更新都是在做这件事情”即“不被检测出服务器在提供翻墙服务”
ss-libev 引入混淆是最初为了 QoS,插件化是为了方便扩展。引入 AEAD 是为了防篡改数据包。增加随机数长度是为了防止破解密钥。
TLS 相关讨论请搜索 shadowsocks 组织下个各项目的 issues。或者使用搜索引擎。
from shadowsocks-org.
楼主的意思是说,在本地客户端和远程服务端之间加上ssl加密吗?
from shadowsocks-org.
我也一直好奇,为什么shadowsocks还不支持SSL。。。顶楼主,早日开发成功并merge
from shadowsocks-org.
@yvbbrjdr 不要跟他计较了,你看看@hellofwy的Github项目就知道了:joy:无需多言
from shadowsocks-org.
from shadowsocks-org.
然而经我实验发现利用SSL加密翻墙效果还不错,性能和ShadowsocksR相当。可以参考我的项目flyingsocks
from shadowsocks-org.
Related Issues (20)
- SIP022: Shadowsocks 2022 Edition HOT 33
- 弱弱的问一句,啥是SIP? HOT 4
- after changing to portable mod, even when I disable the proxy there is no change
- Feature request: Chain Shadowsocks HOT 1
- [Security] Do not engineer vulnerabilities into implementations without public discussions HOT 7
- [One Idea] IP Geolocation Based Filtering HOT 20
- Ahmadtafreshi HOT 1
- Ahmad
- [Peer Review Request]Restls: A Perfect Impersonation of TLS Handshake HOT 5
- 能支持udp over tcp吗 HOT 1
- 日志文件 HOT 1
- OpenWrt client is not working for me
- 能否申请将Java的实现版本也纳入到官方社区中 HOT 1
- Correct wiki entry for "Setup fail2ban" - a jail config error detected HOT 2
- 社区有没有针对SIP023 relay server 的开发计划 HOT 2
- Cannot make the fail2ban setup guide work with systemd journal
- Non-UI Error. Can't start application
- ss://[email protected]:8388#SIP008%0A%0A HOT 1
- 兼容改版shadowsocks
- feature request: sip003 mux / multiplexing spec HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from shadowsocks-org.