undefined | Better HN

0 pointsgruez6y ago0 comments

>How can you block DoH without doing MITM on all outgoing HTTPS? For that matter, how can you block HTTPS based VPNs like OpenVPN?

OpenVPN isn't HTTPS based. It has TLS support, but AFAIK it's implemented as TLS-over-OpenVPN rather than OpenVPN-over-TLS, so it's still very distiquishable from a HTTPS connection. There are workarounds like using TCP mode over stunnel, though.

0 comments

danarmak6y ago

You're right! I wasn't aware of that.

j / k navigate · click thread line to collapse

0 pointsgruez6y ago0 comments

>How can you block DoH without doing MITM on all outgoing HTTPS? For that matter, how can you block HTTPS based VPNs like OpenVPN?

0 comments

danarmak6y ago

You're right! I wasn't aware of that.

j / k navigate · click thread line to collapse