auroragogl.blogg.se - Shadowsocks rss

#Shadowsocks rss how to
#Shadowsocks rss update

The Outline exclusively uses chacha20-ietf-poly1305 (an AEAD cipher) as the encryption method, so you don’t have to select encryption methods manually.īelow, we introduce our findings on the latest capabilities of the GFW along with our suggestions for making circumvention tools more resistant to censorship.

#Shadowsocks rss update

The Outline server can automatically update itself, so you don’t have to manually upgrade it.The Outline already generates a long, random secret for you, so you don’t have to do it manually like what you have to do for a Shadowsocks-libev server.Use the latest server from its official website.Use the latest client from its official website.To prevent your OutlineVPN server from being blocked, you have to: Any client compatible with the server is okay. Note: there is no special requirement for the client. use a long random password, which can be generated from terminal using: openssl rand -base64 16.To mitigate the partitioning oracle attacks against Shadowsocks servers, you need to: In other words, choose one of the following encryption methods: chacha20-ietf-poly1305 (recommended), aes-256-gcm, aes-192-gcm or aes-128-gcm.

You can check the server version with the command ss-server -h. Ensure your server version is v3.3.1 or above.If you already have a Shadowsocks-libev server installed, check the rules below to see if your servers have been properly configured.Īs of January 2021, to prevent your Shadowsocks-libev server from being blocked, you have to: We commit to make that tutorial up-to-date and provide latest best practices to defend against emerging attacks against Shadowsocks.

#Shadowsocks rss how to

If you decide to use Shadowsocks-libev, we strongly encourage you to follow this tutorial on how to install, configure and maintain a Shadowsocks-libev server. For usersĪccording to our own testing, and reports from developers, with proper configurations, there are at least two Shadowsocks implementations whose latest releases are resistant to the GFW’s active probes: Shadowsocks-libev and OutlineVPN. If your Shadowsocks servers still get blocked, even when you follow the instructions below, please report the block to GFW Report and/or the corresponding developers. We also introduce the mitigation to partitioning oracle attacks newly demonstrated by Len et al. In this short post, we provide practical suggestions for non-technical users and circumvention tool developers to prevent their circumvention servers from being detected and blocked. In our recent IMC'20 work ( paper, talk) we provided insight into the combination of traffic analysis and active probing techniques that the Great Firewall uses to detect and block Shadowsocks servers.