<?xml version='1.0' encoding='utf-8'?>
<feed xmlns="http://www.w3.org/2005/Atom" xmlns:thr="http://purl.org/syndication/thread/1.0"><updated>2025-06-05T12:38:07.846066Z</updated><id>tag:,2018:/isso/thread/publications/sp25/en/</id><title>Comments for /publications/sp25/en/</title><entry><id>tag:,2018:/isso/23/613</id><title>Comment #613</title><updated>2025-06-05T12:38:07.846066Z</updated><author><name>Chen Quanguo</name></author><link href="feed/publications/sp25/en/#isso-613" /><content type="html">&lt;p&gt;&lt;/p&gt;&lt;blockquote&gt;
&lt;p&gt;TCP header length has to be 20 bytes. &lt;/p&gt;
&lt;/blockquote&gt;

&lt;p&gt;Thinks if this is on purpose, exactly what client would behave like this? The first came in my mind is Golang &lt;code&gt;net&lt;/code&gt;. Many circumvention tools use this, like obfs4, v2ray, sing-box, and hysteria.&lt;/p&gt;

&lt;p&gt;&lt;a href="https://github.com/net4people/bbs/issues/442" rel="nofollow noopener"&gt;After enabling TCP Timestamp, GFW&amp;#39;s censorship of obfs4 is rendered ineffective&lt;/a&gt;, Jan 1 2025&lt;/p&gt;

&lt;p&gt;Currently tested,&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Chrome on Android 14, tcp.hdr_len == 20&lt;/li&gt;
&lt;li&gt;Golang &lt;code&gt;net/http&lt;/code&gt; program on macOS, tcp.hdr_len == 32&lt;/li&gt;
&lt;li&gt;...&lt;/li&gt;
&lt;/ul&gt;&lt;p&gt;&lt;/p&gt;</content></entry><entry><id>tag:,2018:/isso/23/584</id><title>Comment #584</title><updated>2025-05-18T11:01:50.058575Z</updated><author><name>Chen Quanguo</name></author><link href="feed/publications/sp25/en/#isso-584" /><content type="html">&lt;p&gt;ITDOG geo-blocks Tor exits.&lt;/p&gt;</content><thr:in-reply-to ref="tag:,2018:/isso/23/582" href="feed/publications/sp25/en/#isso-582" /></entry><entry><id>tag:,2018:/isso/23/582</id><title>Comment #582</title><updated>2025-05-14T04:46:27.686161Z</updated><author><name>maoist2009</name></author><link href="feed/publications/sp25/en/#isso-582" /><content type="html">&lt;p&gt;You may use websites such as &lt;a href="http://itdog.cn" rel="nofollow noopener"&gt;itdog.cn&lt;/a&gt; to ping or http request all over china. (province * provider)&lt;/p&gt;</content></entry><entry><id>tag:,2018:/isso/23/573</id><title>Comment #573</title><updated>2025-05-12T12:21:41.515966Z</updated><author><name>NQjfEcD0XdrqE0aA</name></author><link href="feed/publications/sp25/en/#isso-573" /><content type="html">&lt;p&gt;&amp;quot;Likely limited by the vantage points we could access in China, we found no evidence of regional censorship in the six provinces other than Henan.&amp;quot;&lt;/p&gt;

&lt;p&gt;Did you test &lt;a href="http://edition.cnn.com" rel="nofollow noopener"&gt;edition.cnn.com&lt;/a&gt; (SNI blocking)?&lt;/p&gt;

&lt;p&gt;&lt;code&gt;&lt;a href="https://explorer.ooni.org/chart/mat?probe_cc=CN&amp;amp;test_name=web_connectivity&amp;amp;domain=edition.cnn.com&amp;amp;since=2024-05-12&amp;amp;until=2025-05-13&amp;amp;axis_x=measurement_start_day&amp;amp;axis_y=probe_asn&amp;amp;time_grain=week" rel="nofollow noopener"&gt;https://explorer.ooni.org/chart/mat?probe_cc=CN&amp;amp;test_name=web_connectivity&amp;amp;domain=edition.cnn.com&amp;amp;since=2024-05-12&amp;amp;until=2025-05-13&amp;amp;axis_x=measurement_start_day&amp;amp;axis_y=probe_asn&amp;amp;time_grain=week&lt;/a&gt;&lt;/code&gt;&lt;/p&gt;

&lt;p&gt;China Mobile even blocked websites (or proxy servers behind CDN) with 3-tuple (IP, transport layer protocol, port) filtering:&lt;/p&gt;

&lt;p&gt;&lt;code&gt;&lt;a href="https://explorer.ooni.org/chart/mat?probe_cc=CN&amp;amp;test_name=web_connectivity&amp;amp;domain=www.esjzone.one&amp;amp;since=2025-01-01&amp;amp;until=2025-05-13&amp;amp;axis_x=measurement_start_day&amp;amp;axis_y=probe_asn&amp;amp;time_grain=day" rel="nofollow noopener"&gt;https://explorer.ooni.org/chart/mat?probe_cc=CN&amp;amp;test_name=web_connectivity&amp;amp;domain=www.esjzone.one&amp;amp;since=2025-01-01&amp;amp;until=2025-05-13&amp;amp;axis_x=measurement_start_day&amp;amp;axis_y=probe_asn&amp;amp;time_grain=day&lt;/a&gt;&lt;/code&gt;&lt;/p&gt;</content></entry><entry><id>tag:,2018:/isso/23/572</id><title>Comment #572</title><updated>2025-05-12T11:42:51.050920Z</updated><author><name>NQjfEcD0XdrqE0aA</name></author><link href="feed/publications/sp25/en/#isso-572" /><content type="html">&lt;p&gt;People can trigger DNS injection by sending queries to 220.171.42.239:53/UDP (&lt;a href="http://www.xinjiang.gov.cn" rel="nofollow noopener"&gt;www.xinjiang.gov.cn&lt;/a&gt;)&lt;/p&gt;
&lt;pre&gt;&lt;code&gt;dig @220.171.42.239 &lt;a href="http://github.com" rel="nofollow noopener"&gt;github.com&lt;/a&gt;
dig @220.171.42.239 &lt;a href="http://s3.amazonaws.com" rel="nofollow noopener"&gt;s3.amazonaws.com&lt;/a&gt;
&lt;/code&gt;&lt;/pre&gt;</content><thr:in-reply-to ref="tag:,2018:/isso/23/566" href="feed/publications/sp25/en/#isso-566" /></entry><entry><id>tag:,2018:/isso/23/566</id><title>Comment #566</title><updated>2025-05-12T04:47:30.926401Z</updated><author><name>Chen Quanguo</name></author><link href="feed/publications/sp25/en/#isso-566" /><content type="html">&lt;p&gt;The most notable one of regional device is that in East Turkestan (Xinjiang). GitHub was long hijacked to the two Google Beijing IPs, stopped 1 year ago and changed to ordinary Twitter and Facebook&amp;#39;s.&lt;/p&gt;

&lt;p&gt;Oh, just by searching &amp;quot;新疆 GitHub&amp;quot;, what joke did I found?&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;Apply for open GitHub access to advance local Large Language Model research
Xinjiang Autonomous Region Department of Industry and Information Technology: Hello! I am currently learning the deployment and application of local large models. In order to follow the development of science and technology, I tried to obtain Deepseek related resources through GitHub for learning and practice, but due to network restrictions, I was unable to...
I urge your department to consider opening relevant network permissions so that we can obtain the necessary resources.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;ul&gt;
&lt;li&gt;&lt;a href="https://web.archive.org/web/20250414055505/https://gxt.xinjiang.gov.cn/hd/hd_xjxq?id=c1a4f13bf070427895b305adf96981ad&amp;amp;site=6500000059&amp;amp;url=/gxt/xjxq/new_hd_xjxq.shtml" rel="nofollow noopener"&gt;https://web.archive.org/web/20250414055505/https://gxt.xinjiang.gov.cn/hd/hd_xjxq?id=c1a4f13bf070427895b305adf96981ad&amp;amp;site=6500000059&amp;amp;url=/gxt/xjxq/new_hd_xjxq.shtml&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;And this,&lt;/p&gt;

&lt;blockquote&gt;
&lt;p&gt;Xinjiang has always been the experimental area of ​​GFW, and even many domestic websites have suffered. Baidu Netdisk sharing links, Kuwo, Changba, and GitHub have all been shut down, followed by CSDN and cnblog. I don’t want to discuss the reasons here, as everyone understands.&lt;/p&gt;

&lt;p&gt;I pinged &lt;a href="http://github.com" rel="nofollow noopener"&gt;github.com&lt;/a&gt; and it resolved to &lt;strong&gt;203.208.39.99&lt;/strong&gt;. When I connected to the vps, it resolved to 192.30.252.129. Damn, that&amp;#39;s so unfair.&lt;/p&gt;
&lt;/blockquote&gt;

&lt;ul&gt;
&lt;li&gt;&lt;a href="https://archive.today/2025.05.12-044600/https://blog.fliaping.com/solving-the-problem-of-github-can-not-be-use-in-xinjaing/" rel="nofollow noopener"&gt;https://archive.today/2025.05.12-044600/https://blog.fliaping.com/solving-the-problem-of-github-can-not-be-use-in-xinjaing/&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;</content></entry></feed>