-
Amazon Deals - ToS - Warp
Reliance Jio and MITM
- Thread starter Sushubh
- Start date
- Replies 12
- Views 2,317
Thread by @kingslyj: "Proof that @reliancejio actively MITMs all outbound IPv4 HTTP traffic. Instead of a TCP connection refused error, you get a HTML page from t […]"
Thread by @kingslyj: "Proof that @reliancejio actively MITMs all outbound IPv4 HTTP traffic. Instead of a TCP connection refused error, you gge from their MITM infrastructure. cc: @internetfreedom @nixxin @reliancejio @internetfreedom @nixxin When yo […]"
threadreaderapp.com
pothi
@127.0.0.1
Not opening on Jio Fiber.
ISP which wants to profit from selling user data is a very big red flag.
MITM is pretty much dead from years on big sites, now it can be used only on sites not properly configured. Letsencrypt, cloudflare makes it super easy to implement https on your site.
DPI can be used for optimizing network too like serving youtube peering or cdn stuff from isp servers etc. Not much information can be extracted from https sites. IP, site name info can be used for blocking sites, creating vague profiles.
On mobile DPI will be more useful for profiling because its a personal device like your activity hours can indicate if you are employed or not etc but thats still pretty vague. On broadband with multiple active device profiling would be more mess, too much effort for not so useful data.
With DOH, cloudflare ESNI DPI will be even more difficult. Big sites like youtube, netflix etc would like ISP to be able to identify their traffic so it can served from nearby server according to their peering agreements.
@C3PO using VPN would actually put you on govt naughty list because your traffic would stand out from other users.
MITM is pretty much dead from years on big sites, now it can be used only on sites not properly configured. Letsencrypt, cloudflare makes it super easy to implement https on your site.
DPI can be used for optimizing network too like serving youtube peering or cdn stuff from isp servers etc. Not much information can be extracted from https sites. IP, site name info can be used for blocking sites, creating vague profiles.
On mobile DPI will be more useful for profiling because its a personal device like your activity hours can indicate if you are employed or not etc but thats still pretty vague. On broadband with multiple active device profiling would be more mess, too much effort for not so useful data.
With DOH, cloudflare ESNI DPI will be even more difficult. Big sites like youtube, netflix etc would like ISP to be able to identify their traffic so it can served from nearby server according to their peering agreements.
@C3PO using VPN would actually put you on govt naughty list because your traffic would stand out from other users.
Using a VPN is not illegal...as of now. So there's no worry. To a packet sniffer there's no difference between a VPN and https traffic. What I think is govt. using backdoors in different encryption algorithms/methods to snoop on users. I can tell you based on inputs from a person in the know...that backdoors are more common then we think. I'll leave it at that. If you want perfect privacy disconnect from the 'net. Period.
@C3PO I never said its illegal to use VPN. With https traffic isp can still the ip of sites you visit, with vpn all your traffic would connect to vpn servers so thats easy to differentiate.
Backdoors is software, android, windows, some hardware based is kinda open knowledge now but I don't think they can break encryption yet or if they have super computers for that then it will used only for important stuff.
Backdoors is software, android, windows, some hardware based is kinda open knowledge now but I don't think they can break encryption yet or if they have super computers for that then it will used only for important stuff.
