@hackage neko-obfs0.1.0.1

a TCP tunnel with packet length obfuscation

Categories
- Network Development
License
Apache-2.0
Maintainer
nfjinjing@gmail.com
Links
- Homepage
- Documentation
- No source repository
- Changelog
Versions
- 0.1.0.4 Sat, 23 Nov 2019
- 0.1.0.2 Mon, 7 Aug 2017
- 0.1.0.1 Mon, 24 Jul 2017
- 0.1.0.0 Thu, 20 Jul 2017

Protocol

payload

-> 

n | padding | m | payload

n (word32be): the number of bytes of padding
padding: n bytes of noise
m (word32be): the number of bytes of the original payload
payload: the original packet

Implementation

n is randomly generated for each packet.
n is bounded by a maximum r, configurable by the --randomness argument.
To reduce overhead, n is set to 0 whenever m is greater then a threshold b, configurable by the --bound argument.

Usage

local:

  need-obfs --localHost TEXT --localPort INTEGER --remoteHost TEXT --remotePort INTEGER

remote:

  neko-obfs --remote --remoteHost TEXT --remotePort INTEGER --forwardHost TEXT --forwardPort INTEGER

This tunnel should be used inside an encrypted tunnel.

For example:

  ss-local (rc4)

    -> neko-obfs -> ss-tunnel (aes-256-cfb)

      -> gfw -> internet

    -> ss-tunnel (aes-256-cfb) -> neko-obfs 

  -> ss-server (rc4)

Note it's the ss-tunnel layer that protects the obfuscation, otherwise data and noise length are clearly visible.

Performance

No noticeable slow down yet (Jul 24, 2017)

Installation
In your cabal file:
Dependencies (0)
Dependents (1)
@hackage/acme-everything

@hackage neko-obfs0.1.0.1

Categories

License

Maintainer

Links

Versions

Protocol

Implementation

Usage

Performance

Installation

Dependencies (0)

Dependents (1)