Tdesktop: Feature Request: add HTTPS proxy

Created on 7 Apr 2018  路  19Comments  路  Source: telegramdesktop/tdesktop

In addition to HTTP proxy, would be nice to have option to use HTTPS proxy (tls+http)
for more security

enhancement
Source
picture s3rj1k
👍2

Most helpful comment

MTProto can be detected by DPI and blocked, but if one would tunnel through HTTPS proxy no one sane would drop those packets.

picture s3rj1k on 7 Apr 2018
👍82

All 19 comments

@s3rj1k There is no need for https here, because everything is encrypted using MTProto, so no one can see anything that would be hidden by https.

john-preston picture john-preston on 7 Apr 2018
1

MTProto can be detected by DPI and blocked, but if one would tunnel through HTTPS proxy no one sane would drop those packets.

s3rj1k picture s3rj1k on 7 Apr 2018
👍82

Same applies for SOCKS (even with passwords) btw.

stek29 picture stek29 on 7 Apr 2018

@stek29 yep. But secure SOCKS (shadowsocks) is kind of hackish protocol.

On the other hand HTTPS is defacto standard, implemented in all major web browsers.

s3rj1k picture s3rj1k on 7 Apr 2018

@john-preston any news on this?

s3rj1k picture s3rj1k on 15 Apr 2018

@s3rj1k No news, sorry :( Current proxy implementation works through http://doc.qt.io/qt-5/qnetworkproxy.html and I'm not sure they support https proxy (otherwise it would work already).

john-preston picture john-preston on 15 Apr 2018

made JIRA issue for upstream https://bugreports.qt.io/browse/QTBUG-67709

s3rj1k picture s3rj1k on 15 Apr 2018

Proxy authorization data transfers as a plain text (by design in RFC). It is not safe to use your application with a proxy in public networks. Please add support tls/ssl protocol for socks/http proxy

101usb picture 101usb on 18 Apr 2018

@101usb No, it is as safe to use Telegram with proxy as without proxy (so pretty much safe)

stek29 picture stek29 on 18 Apr 2018

@stek29 we would feel safer with TLS encryption option in proxy :)

s3rj1k picture s3rj1k on 18 Apr 2018

@stek29 @101usb mean that proxy credentials could be intercept by MITM and using, because credentials transfers as a plain text.

evgenylarin picture evgenylarin on 18 Apr 2018
👍3

@Aokromes I have HTTP and HTTPS requests used in tdesktop, but I'm not sure how you use HTTPS proxy there - I see only HTTP proxy type in docs.

john-preston picture john-preston on 19 Apr 2018

I tried a HTTPS proxy from here, https://us-proxy.org/ It worked for me in Tdesktop 1.2.18 alpha, although it displays HTTP in tdesktop UI.

omkarnathsingh picture omkarnathsingh on 6 May 2018

I'll just leave this link here (in russian)

s3rj1k picture s3rj1k on 14 Jun 2018

@s3rj1k that link' tl;dr;

One of the biggest Russian ISP blocks MTProxy by checking packet sizes.

lgg picture lgg on 15 Jun 2018

Hey there!

This issue will be automatically closed in 7 days if there would be no activity. We therefore assume that the user has lost interest or resolved the problem on their own.

Don't worry though; if this is an error, let us know with a comment and we'll be happy to reopen the issue.

Thanks!

stale[bot] picture stale[bot] on 24 Oct 2020

Still an issue

s3rj1k picture s3rj1k on 24 Oct 2020

Qt folks decided not to support HTTPS proxies, so tdesktop wouldn't have support for them as well:
https://bugreports.qt.io/browse/QTBUG-66601

ilya-fedin picture ilya-fedin on 24 Oct 2020

@ilya-fedin Well this is disappointing to say the least.

s3rj1k picture s3rj1k on 24 Oct 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

Justinzobel picture Justinzobel  路  3Comments
JhonSane picture JhonSane  路  3Comments
ghost picture ghost  路  3Comments
TheAppService picture TheAppService  路  3Comments
qwitriy picture qwitriy  路  3Comments