Skip to content

Enforce TLS #97

@JeremyRand

Description

@JeremyRand

This is a bit of a scope expansion, but it would be interesting to have an option to enforce that TCP streams (after the SOCKS5 handshake) begin with a TLS handshake. This would essentially be an alternative to TLS-Guard from Subgraph, and we could probably borrow some of their code for this.

Main benefit is flagging applications that send communications via cleartext. In particular, it's likely to flag bugs in applications that use onion services and aren't designed to leverage Whonix.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions