boronine
commented
1 day ago Perhaps establishing a TLS connection from the client would help circumvent blocks since it will make the reverse-HTTP2 connection harder to detect
Open boronine opened 1 day ago
boronine
commented
1 day ago Perhaps establishing a TLS connection from the client would help circumvent blocks since it will make the reverse-HTTP2 connection harder to detect
Our HTTP2 layer also has TLS encryption, leading to redundant nested TLS. At first I tried to disable TLS on HTTP2, but this doesn't seem to be supported by Node.js. The other alternative is to initiate the tunnel with an unencrypted TCP connection and move the authentication + encryption layer to the HTTP2 tunnel, which makes the system a little bit simpler as well.