On Fri, Jul 27, 2018 at 11:20 AM, Ahmed Kamal <email.ahmedkamal at googlemail.com> wrote: > > Thanks for the info. Really appreciating your help! I wish more and > more privacy software, would focus a bit more on censorship > resistance. Without it, users who most deeply need the privacy > features, are not getting it. Although I understand the technical > difficulties and appreciate all the hard-work the OC team is doing. Glad to help. Keep in mind that anti-circumvention is a tricky problem that can't be solved in the application layer alone. We're talking about an application (VPN) that really needs a datagram-based transport (UDP) to work correctly, but we have a censor which is willing and able to: - Inspect and modify packets at the network level (blocking by subnets and IPs) - Inspect and modify datagrams and streams at the transport level (TCP resets, UDP black holes) - Use MITM attacks to downgrade crypto (various TLS attacks) Unless/until encrypted datagram-based traffic becomes a large and economically crucial part of Internet traffic (perhaps via WebRTC calling?) national censors can and will just shut it down entirely. Dan
