Home page logo

nanog logo nanog mailing list archives

Re: Iran blocking essentially all encyrpted protocols
From: Alan Clegg <alan () clegg com>
Date: Sat, 11 Feb 2012 17:56:52 -0500

On 2/11/2012 4:50 PM, Richard Barnes wrote:
FWIW: A colleague in Iran was able to connect to a server in the US
using HTTPS on a non-standard port (9999).  It appears that the
Iranian government is not blocking TLS/HTTPS per se, but just port
443.  So in principle, if there were just some HTTPS proxies using
non-standard ports, then people would be able to get out.  At least
until (1) the addresses of the proxies become known to the regime, or
(2) they start blocking cross-border TLS altogether.

Or applications (and providers) knew how to use SRV records...

alan () clegg com | 1.919.355.8851

Attachment: signature.asc
Description: OpenPGP digital signature

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]