Closed 7c closed 3 months ago
I drop the padding(21) extension omitting, so the lacks of 21
should be fixed. but for the lacks of 0
I suppose it's not a bug in nginx-ssl-fingerprint
I belive it's fixed, please re-open this issue if it can re-pro.
Hello, i have read the other issue about the discrepancy between ja3zone and this implementation. Indeed it differs in 2 locations. I am testing with ubuntu20 curl since this ja3 is "known" to many people. I also have my own IDS tool in golang which uses tlsx to calculate ja3 hashes. I have also tested the tested haproxy-ja3 implementation which is compatible with ja3zone.
Also mentioned in ja3zone author at https://waf.ninja/ja3-on-guard-against-bots/ the nginx implementation differs from all "others". I believe you should seek compatibility.