Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
duskwuff
78 days ago
|
parent
|
context
|
favorite
| on:
Doxx/Darkflare: DarkFlare TCPoCDN (TCP over CDN)
> I don’t get why headers and requests need to be spoofed if all traffic is over https?
Because the traffic is to a CDN endpoint (like Cloudflare) which expects it to be a HTTP message.
tomsonj
78 days ago
[–]
it can still be an https message, who cares what the path, query string, or headers look like? that is all encrypted
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Because the traffic is to a CDN endpoint (like Cloudflare) which expects it to be a HTTP message.