Please continue using a VPN when visiting this channel, or using Lemmy in general.
Most - if not all - sites are not blocked and can be reached freely, but that also means your ISP can keep tabs on you.
Please continue using a VPN when visiting this channel, or using Lemmy in general.
Most - if not all - sites are not blocked and can be reached freely, but that also means your ISP can keep tabs on you.
Lemmy is unblocked in China, at least various instances are. And https is meaningless, they don’t care what particular content you access, as long as the website itself hosts potentially controversial content, you’re on the hook regardless. A mere DNS resolve to a domain they don’t want you to see is all it takes.
You can use DNS crypt to send encrypted DNS requests to servers outside of China
Are you in China?
Yes, I was able to use DNS Crypt earlier, but of course that’s because it’s under the radar and they could block all of those servers at any time they wish
DNS over HTTPS
Something that is blocked in China
How do you block https without making 99% of websites defunct?
They don’t block all of HTTPS, they try to block TLS 1.3 + ESNI so they will require to know what website you’re browsing
They also block encrypted connections to common servers like 8.8.8.8 so that they see what DNS request you’re making
Certainly, they can’t block DNS over HTTPS to your own overseas DNS server unless they know about it
Are there massive security vulnerabilities in TLS 1.2?
Yes, like telling the Chinese government what site you visit, for example