Trac issueshttps://gitlab.torproject.org/legacy/trac/-/issues2020-06-13T18:30:56Zhttps://gitlab.torproject.org/legacy/trac/-/issues/15198Cyberoam blocking connections to Tor2020-06-13T18:30:56ZJacob AppelbaumCyberoam blocking connections to TorI'm currently in Istanbul, Turkey at a local university. The network blocks connections to the Tor network (using Tails) with a layered approach to censorship, I suspect.
I've tried to configure regular bridges, obfs2,3,scramblesuit PT ...I'm currently in Istanbul, Turkey at a local university. The network blocks connections to the Tor network (using Tails) with a layered approach to censorship, I suspect.
I've tried to configure regular bridges, obfs2,3,scramblesuit PT and direct connections. None appear to function. I am able to ssh out - so I can connect to Tor by binding a local SOCKS proxy and configuring Tor to connect over a SOCKS proxy. That is how I've filed this bug report.
The Cyberoam device is clearly acting as a MITM - it is highly annoying. It is a captive portal, which is easy to bypass with a login/password (ironically, not deployed with https!), after the captive portal, it filters conections by protocol, ip address and port number - I haven't yet fingerprinted the device upstream but I'll add information as I find it.https://gitlab.torproject.org/legacy/trac/-/issues/21014Turkey blocking of direct connections, 2016-12-122021-03-27T04:55:11ZNima FatemiTurkey blocking of direct connections, 2016-12-12Turkey Blocks article: https://turkeyblocks.org/2016/12/18/tor-blocked-in-turkey-vpn-ban/
After getting some reports on twitter about Tor being blocked in Turkey and some chat on IRC, <bypassemall> aka <trdpi> aka <kzdpi> ran some tests...Turkey Blocks article: https://turkeyblocks.org/2016/12/18/tor-blocked-in-turkey-vpn-ban/
After getting some reports on twitter about Tor being blocked in Turkey and some chat on IRC, <bypassemall> aka <trdpi> aka <kzdpi> ran some tests and found some interesting information about how Turkey is blocking vanilla Tor connections. I paste their findings here:
```
16:48 < trdpi> 10 connections died in state handshaking (TLS) with SSL state SSLv2/v3 read server hello A in HANDSHAKE
16:48 < trdpi> after less than 10 seconds
...
16:55 < trdpi> this isp injects rst it seems
16:56 < trdpi> to both side, as i got 2 rst one legit and 2 not
16:57 < mrphs> oh apparently today is an special day in turkey
...
17:00 < trdpi> telneting to or port, no rsts. it triggered by something more than ip:port connection
17:01 < trdpi> yay, window trick for split req works for tr
17:02 < trdpi> magic tool allows to bypass vanilla tor censorship
17:04 < trdpi> so it's about ciphersuits or something
17:07 < trdpi> it's like kz, but obfs4 works
17:07 < trdpi> and kz do not rsts
17:07 < trdpi> it controlls connection
17:07 < trdpi> and tr like do not controlls and to inject fraud only
```https://gitlab.torproject.org/legacy/trac/-/issues/25430Turkey bridges.torproject.org cant access2020-06-13T18:29:10ZTracTurkey bridges.torproject.org cant accessGreetings,
In Turkey as you know there are lots of internet censorship and im fearing that this censorship could go way much worse just like russia and china.
About 2-3 years ago Turkey government blocked tor, by that i mean tor relays...Greetings,
In Turkey as you know there are lots of internet censorship and im fearing that this censorship could go way much worse just like russia and china.
About 2-3 years ago Turkey government blocked tor, by that i mean tor relays and torproject.org website.
So im trying to get along with it by using bridges.
The problem is, both torproject.org and its subdomain bridges.torproject.org is censored as well-in all Turkey's ISP's. Currently i can only access via vpn-but also in tails its really hard to access bridges as well.(one time i had to manually input bridges plus certs doh!)
My search on mirrors of bridges.torproject.org gave no results, and i cant find any problem solving answers here as well unfortunately.
And yes there are other ways to get bridges by mail, but those mail adresses-gmail,yahoo and riseup could be censored as well. So we need a solution about that too.
So my problem/ suggestion is to put a mirror site-other than torproject.org on your web page,and maybe put some sync'ing bridges in tails ( i mean with a script, bridges info could be pulled -from clearnet :( i know right-and put in torrc file)
Sorry i dont have enough tech info about this,im just throwing the ideas i have.
This censorship of ours could be gotten worse-in anytime so please help us!
**Trac**:
**Username**: fromturkey