[Security] Do not engineer vulnerabilities into implementations without public discussions about shadowsocks-org HOT 7 OPEN

I implemented my proposed equivalent as a pair of pre-shared stream prefixes in shadowsocks-go. To enable this feature, specify the prefixes in base64 encoding as "unsafeRequestStreamPrefix" and "unsafeResponseStreamPrefix" in server and client config.

A simple example of pretending to be a dead HTTP parrot:

printf 'GET / HTTP/1.1\r\nHost: localhost\r\n\r\n' | base64
R0VUIC8gSFRUUC8xLjENCkhvc3Q6IGxvY2FsaG9zdA0KDQo=
printf 'HTTP/1.1 200 OK\r\nConnection: close\r\n\r\n' | base64
SFRUUC8xLjEgMjAwIE9LDQpDb25uZWN0aW9uOiBjbG9zZQ0KDQo=

Then you can add:

{
    "unsafeRequestStreamPrefix": "R0VUIC8gSFRUUC8xLjENCkhvc3Q6IGxvY2FsaG9zdA0KDQo=",
    "unsafeResponseStreamPrefix": "SFRUUC8xLjEgMjAwIE9LDQpDb25uZWN0aW9uOiBjbG9zZQ0KDQo="
}

If you are feeling generous, configure a fallback address:

{
    "unsafeFallbackAddress": "[::1]:80"
}

Now the stupid firewall you have been trying to bypass might actually let you through!

from shadowsocks-org.

I think it was added as a temporary workaround. I do agree that people should be better informed about its negative effects in the long term.

from shadowsocks-org.

I decided to add it into shadowsocks-rust was just for allowing users to "test" whether this strategy would help for preventing servers to be detected. I do agree that this is not a perfect solution and possibly increases the risk of servers to be detected by adding identities. It is Ok for me to remove it immediately, because it seems that there is no obvious benefit gain from this testing feature.

from shadowsocks-org.

1. It does not need to update the client side to get prefix printable chars. It just updated nonce generation.
2. for my version, I changed the length of prefix 6 to the whole nonce length printable.
3. now TCP can not bypass GFW block with current default version. So my friends are using other tools instead.

But the feature helps me. I looked into the normal tcp stream. and it has a range for prefix bytes. So I just make it the same as some kind of header "/GET /home.index", instead of random nonce salt. It does help.

Anyway. it is your pleasure to remove the code. I have my own branch just for personal usage.

from shadowsocks-org.

Mitigation
Unless it's for testing, I agree it's a mistake to have the circumvention mitigation enabled all the time, as it does make the protocol vulnerable.

However, there's value in making it an opt-in. The assumption in that case is that the server connection is already blocked, so you have nothing to lose by enabling the mitigation.

For Outline, we are not only making it opt-in, but also we'll let the server administrator specify the prefix they would like the user to use in the access key and online config. This way they can be modified quickly as blocking evolves, and the censor won't be able to easily tell what prefixes are being used.

Multi-hop approach
The proposal of adding a new pair of client and server between the original pair is helpful, but often not feasible, as you need to acquire servers on both sides of the firewall. Right now, in Iran, it's hard to pay for servers because of sanctions. Same in Russia.

It also doubles your traffic costs, which is one of the biggest issues for service providers.

from shadowsocks-org.

The proposal of adding a new pair of client and server between the original pair is helpful, but often not feasible, as you need to acquire servers on both sides of the firewall.

It also doubles your traffic costs, which is one of the biggest issues for service providers.

You don't need separate servers for this. Just run the new pair of client and server beside existing ones on the same systems. Some prefer to call it "SIP003 plugins".

Outline's implementation (Jigsaw-Code/outline-ss-server#127) uses part of the salt as the prefix. While I understand the consideration for backwards compatibility, there are quite a few drawbacks:

1. The entropy of the salt is reduced.
2. The length of the prefix is limited to the salt length.
3. Prefix-unaware Shadowsocks servers cannot detect the presence of such prefixes.

For Outline, we are not only making it opt-in, but also we'll let the server administrator specify the prefix they would like the user to use in the access key and online config.

Since server admins are going to have to get involved anyway, why not just put the prefixes ahead of the actual Shadowsocks stream, like my implementation did.

from shadowsocks-org.

It's also trivial to implement the prefix pair as an optional part of the stream: If the server sees the request prefix in the request stream, then the response prefix may be prepended to the response stream. Otherwise it's processed exactly like before. This approach won't break existing prefix-unaware clients, while giving server admins full control of what to use as prefixes.

from shadowsocks-org.