[squid-users] Host header forgery affects pure splice environment too?
Marcus Kool
marcus.kool at urlfilterdb.com
Mon Dec 28 13:58:57 UTC 2015
On 12/28/2015 01:33 AM, Jason Haar wrote:
> On 28/12/15 14:34, Amos Jeffries wrote:
[...]
> I think we know what the problem is: TOR is making TLS connections (I
> don't know if they're HTTPS) on port 443 and uses SNI names that aren't
> real?
peeking on tor-proxy-2.cypherpunks.to shows a certificate with
issuer '/CN=www.totaikrsupklbpy5.com'
subject '/CN=www.bpanciu6f5cjqflv2.net'
so the certificate is definitely bogus.
marcus
More information about the squid-users
mailing list