Iyo outline-ss-server 1.4 proxy server yakaburitswa, ichishandisa Shadowsocks protocol kuvanza hunhu hwetraffic, bypass firewall uye kunyengera mapaketi ekuongorora masisitimu. Iyo sevha iri kuvandudzwa neiyo Outline purojekiti, iyo inopawo hurongwa hwemashandisirwo evatengi uye yekudzora interface iyo inokutendera iwe kukurumidza kuendesa akawanda-mushandisi Shadowsocks maseva zvichienderana neiyo outline-ss-server munzvimbo dzeruzhinji makore kana pane yako michina, zvitonge kuburikidza newebhu interface uye ronga kupinda kwevashandisi nemakiyi. Iyo kodhi inogadzirwa uye inochengetwa neJigsaw, chikamu mukati meGoogle chakagadzirwa kugadzira maturusi ekunzvenga censorship uye kuronga kupanana kwemahara kweruzivo.
Outline-ss-server yakanyorwa muGo uye yakagoverwa pasi peApache 2.0 rezinesi. Iyo kodhi inoshandiswa sehwaro ndeye proxy server go-shadowsocks2, yakagadzirwa neShadowsocks kuvandudza nharaunda. Munguva ichangopfuura, basa guru rechirongwa cheShadowsocks rakatarisana nekuvandudzwa kwesevha itsva mumutauro weRust, uye kushandiswa mumutauro weGo hakuna kuvandudzwa kweanopfuura gore uye kuri kusara shure mukushanda.
Misiyano iri pakati peoutline-ss-server uye go-shadowsocks2 inoburuka kuzotsigira kubatanidza vashandisi vakawanda kuburikidza netiweki chiteshi, kugona kuvhura akati wandei network madoko kuti ugamuchire zvinongedzo, kutsigirwa kwekutsva kwekutanga uye kugadzirisa zvigadziriso pasina kutyora kubatanidza, yakavakirwa-mukati. yekutarisa uye maturusi ekugadzirisa traffic zvichibva paprometheus papuratifomu .io.
outline-ss-server inowedzerawo dziviriro pakukumbira probe uye traffic replay kurwiswa. Kurwiswa kuburikidza nezvikumbiro zvebvunzo kune chinangwa chekuona kuvepo kweproxy; semuenzaniso, munhu anorwisa anogona kutumira seti yedata yehukuru hwakasiyana kune yakananga Shadowsocks server uye kuongorora kuti yakawanda sei data ichaverengwa sevha isati yaona kukanganisa uye kuvhara kubatana. Kurwiswa kwetraffic replay kunobva pakubata musangano pakati pemutengi neseva uye woedza kuendesa zvakare data rakabatwa kuti uone kuvepo kweproxy.
Kuti udzivirire pakurwiswa kuburikidza nezvikumbiro zvekuedza, iyo outline-ss-server server, kana data isiriyo yasvika, haikanganisi kubatana uye hairatidze kukanganisa, asi inoramba ichigamuchira ruzivo, ichiita semhando yegomba dema. Kuti udzivirire kubva pakudzokororwa, data yakagamuchirwa kubva kumutengi inotariswazve kuti idzokororwe uchishandisa cheki yakachengetwa kwezviuru zvekupedzisira zvekubata maoko kutevedzana (yakakura 40 zviuru, saizi inoiswa kana sevha inotanga uye inodya makumi maviri mabhayiti endangariro pakutevedzana). Kuvharisa mhinduro dzinodzokororwa kubva kuseva, ese maseva ekubata ruoko anoteedzana anoshandisa HMAC macode echokwadi ane 20-bit tags.
Panyaya yezinga rekuhwanda kwetraffic, iyo Shadowsocks protocol mune iyo outline-ss-server kuita iri padyo neObfs4 plug-in yekufambisa muTor isingazivikanwe network. Iyo protocol yakagadzirwa kuti ipfuure iyo traffic censoring system muChina ("The Great Firewall yeChina") uye inobvumidza iwe kunyatso kuviga traffic inotumirwa kuburikidza neimwe sevha (traffic yakaoma kuziva nekuda kwekubatanidzwa kwembeu isina kujairika uye simulation ye kuyerera kunoenderera).
SOCKS5 inoshandiswa seprotocol yezvikumbiro zveproxy - proxy ine SOCKS5 tsigiro inotangwa pane yemuno sisitimu, iyo tunnel traffic kune iri kure server kubva uko zvikumbiro zvinonyatso itwa. Traffic pakati pemutengi nesevha inoiswa mugedhe yakavharidzirwa (yakatemerwa encryption inotsigirwa AEAD_CHACHA20_POLY1305, AEAD_AES_128_GCM neAEAD_AES_256_GCM), kuvanza chokwadi chekugadzirwa kwayo ndiro basa rekutanga reShadowsocks. Kurongeka kweTCP neUDP tunnels inotsigirwa, pamwe chete nekugadzirwa kwemaitiro asina kuganhurirwa neSOCKS5 kuburikidza nekushandiswa kwemapulagi anoyeuchidza plug-in transports muTor.
Source: opennet.ru