[tor-bugs] #28168 [Obfuscation/meek]: Use ESNI via Firefox HTTPS helper
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Mar 29 00:28:35 UTC 2019
#28168: Use ESNI via Firefox HTTPS helper
------------------------------+-----------------------------
Reporter: dcf | Owner: dcf
Type: project | Status: closed
Priority: Medium | Milestone:
Component: Obfuscation/meek | Version:
Severity: Normal | Resolution: implemented
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
------------------------------+-----------------------------
Comment (by dcf):
I revised the instructions in comment:5 to add the pref
`security.OCSP.enabled=0`, because
[https://bugzilla.mozilla.org/show_bug.cgi?id=1535235 OCSP can leak the
server name] even with DoH, ESNI, and TLS 1.3 are used. (This was never a
problem with meek because any OCSP leaks would have been of the front
domain, not the covert domain.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28168#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list