This is called "Secure Web Proxy". This is not a standard, but it is supported by Chromium and Firefox. https://www.chromium.org/developers/design-documents/secure-web-proxy
This helps against DPI in some countries like China and Turkmenistan. Actually, I'd like to see support too. https://community.openvpn.net/openvpn/ticket/594 On 03/16/2016 01:14 AM, Jason Haar wrote: > Yeah, instead of opening a TCP socket to a proxy port (eg 3128) and sending > "GET url..." proxy commands, you set up a TLS/TCP socket to a different proxy > port > and then send your proxy commands. squid-3.X supports it and it means we can > securely (actually, privately would be a better word) run proxied clients over > the Internet. So I was thinking that if openvpn supported TLS proxies, then > we could run openvpn through a true TLS layer - at the moment if you run > openvpn > on (say) TCP/443, that can be picked up by layer7 firewalls as being > non-HTTPS traffic (more correctly, non-TLS traffic). If you encapsulated > openvpn inside > TLS, it would look to the world identical to HTTPS traffic > > On Wed, Mar 16, 2016 at 9:07 AM, Gert Doering <g...@greenie.muc.de > <mailto:g...@greenie.muc.de>> wrote: > > > > -- > Cheers > > Jason Haar > Information Security Manager, Trimble Navigation Ltd. > Phone: +1 408 481 8171 > PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 > > > ------------------------------------------------------------------------------ > Transform Data into Opportunity. > Accelerate data analysis in your applications with > Intel Data Analytics Acceleration Library. > Click to learn more. > http://pubads.g.doubleclick.net/gampad/clk?id=278785231&iu=/4140 > > > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openvpn-users
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Transform Data into Opportunity. Accelerate data analysis in your applications with Intel Data Analytics Acceleration Library. Click to learn more. http://pubads.g.doubleclick.net/gampad/clk?id=278785231&iu=/4140
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
