Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> this can't possibly put peoples lives in more danger than using signal without a proxy a week ago would've.

I see one reason it could, it filters out people who do "need" to use it. It could even be people who did not use it before, but think it's undetectable now. Signal implies it can't be detected, at least to non-technical readers.

>Unlike a standard HTTP proxy, connections to the Signal TLS Proxy look just like regular encrypted web traffic. There’s no CONNECT method in a plaintext request to reveal to censors that a proxy is being used.

https://signal.org/blog/help-iran-reconnect/



If the mere use of Signal is banned, traffic analysis tools an DPI can be used to identify users and bring them the unwelcome attention of the regime’s well-staffed secret police. I’m sure the Chinese are selling them surveillance tech, and if not Iranians are quite capable of developing it themselves.

It’s not a simple issue to resolve. WireGuard is better in that it only establishes a flow if authenticated, but UDP traffic is a giveaway.

The bug reporters reacted immaturely to being asked to submit the report on the Signal forum instead of GitHub, but Signal hiding before a CoC to avoid discussing substantive issues is not a good look.


> I’m sure the Chinese are selling them surveillance tech, and if not Iranians are quite capable of developing it themselves.

Actually it seems more likely that it's US-built censorship tools -- specifically BlueCoat, which was detected in 2013[1]. BlueCoat claimed they didn't sell the hardware to Iran because it would violate sanctions but that's not much consolation for the people who are being surveilled using their tools.

[1]: https://www.washingtonpost.com/world/national-security/repor...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: