[squid-users] Host header forgery affects pure splice environment too?

Marcus Kool marcus.kool at urlfilterdb.com
Mon Dec 28 13:58:57 UTC 2015

On 12/28/2015 01:33 AM, Jason Haar wrote:
> On 28/12/15 14:34, Amos Jeffries wrote:
> I think we know what the problem is: TOR is making TLS connections (I
> don't know if they're HTTPS) on port 443 and uses SNI names that aren't
> real?

peeking on tor-proxy-2.cypherpunks.to shows a certificate with
   issuer '/CN=www.totaikrsupklbpy5.com'
   subject '/CN=www.bpanciu6f5cjqflv2.net'
so the certificate is definitely bogus.


More information about the squid-users mailing list