WOW! China Blocks TLS 1.3 with ESNI - Let us discuss - podcast episode cover

WOW! China Blocks TLS 1.3 with ESNI - Let us discuss

The Backend Engineering Show with Hussein Nasser
Aug 09, 202014 min
--:--
--:--
Listen in podcast apps:
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

SNI or server name indication is a TLS Extention that indicate which server/host/domain the client want to communicate with. This is to allow for hosting of multiple websites on the same public static ip address. For the longest time all ISPs used SNI to block hosts and websites, China is now blocking the encrypted version SNI.

0:00 Intro

2:00 DNS and DOH

3:30 SNI

6:30 ESNI

11:00 The Block

The ESNI and DOH stops this but China want

https://www.zdnet.com/article/china-is-now-blocking-all-encrypted-https-traffic-using-tls-1-3-and-esni/

https://tools.ietf.org/html/draft-ietf-tls-esni-07#section-3.2

For the best experience, listen in Metacast app for iOS or Android