Comments (8)
example.com/xxx/trojan
- you are trying to suggest using some part of the http request as the authentication token. I think an http header is more suitable for this purpose. In the new mode (in development) of the Trojan protocol we will use proxy-authorization
for this.
Websocket involves extra protocol round trips compared to HTTPS or raw TLS with no real benefits for tunneling. QUIC is a possible alternative transport to HTTP/2, but only after it is standardized, deployed in Chrome, and has server implementations.
from trojan.
@klzgrad My point is: example.com/xxx/trojan
to hide trojan In a web site, https encrypted outside the path can not be obtained, GFW only know example.com do not know trojan.
The purpose is not authentication, is hidden trojan.
Websocket is my error.
from trojan.
example.com without auth header -> masquerade website
example.com with auth header -> proxy
This is all "content switching" or load balancing using part of the request as the key. Only difference is to use which part, the url or a header.
from trojan.
@klzgrad I understand.
About proxy-authorization
Will the proxy-authorization
verification by whom?
What I'm worried about is:Unauthenticated request use proxy-authorization
header, trojan return what?
from trojan.
Verified by a Trojan server.
If unauthenticated, the Trojan server returns the masquerade website.
from trojan.
How to return to the masquerade website? If it is 301 or 302 that formed a feature
Seems to be back to my earliest question.
The correct URL to trojan check proxy-authorization
The wrong URL can never find trojan
The goal is to reduce trojan's connection to unknown requests
So I think custom URL is useful.
PS:Whether there is a telegraph group, English is not good, discuss some difficult.
from trojan.
In Nginx's language,
server {
...
set $upstream "masquerade";
if ($http_proxy_authorization ~ "Basic aGVsbG86d29ybGQ=") {
set $upstream "proxy";
}
location / {
proxy_pass $upstream
}
}
This makes the goal you defined too.
from trojan.
@klzgrad Got it, thanks for the answer. Look forward to the new version.
from trojan.
Related Issues (20)
- linux版本是否不支持sse长链接?
- Does the Linux version not support sse long links
- [BUG]
- 自建Trojan节点突然不正常了 HOT 3
- [BUG] 使用自签名证书服务端启动失败
- [Question] iOS implementation
- [Feature Request] 翻墙用户到查20年,影响三代! HOT 11
- 关于tls in tls被识别的情况 HOT 5
- 按照教程配置,一直报错”valid trojan request structure but possibly incorrect password“,求解 HOT 3
- [BUG]
- [BUG]
- [BUG]
- [BUG]
- [BUG]
- 请教一下大神,使用privoxy+trojan,让客户端可以使用http代理的问题
- Question: how can I connect to trojan server on linux?
- 有没有群聊沟通,QQ、微信类的trojan交流群 HOT 1
- [BUG] Setting the "verify" field in ssl section to false, but still got cert file not found error.
- why my trojan server got signal: 2 when I start trojan service?
- [Feature Request] Plan to support Zero Copy for network packets?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from trojan.