Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
Signal App only working if SNI enabled
« previous
next »
Print
Pages: [
1
]
Author
Topic: Signal App only working if SNI enabled (Read 2745 times)
ruggerio
Sr. Member
Posts: 295
Karma: 11
Signal App only working if SNI enabled
«
on:
February 01, 2021, 08:40:44 am »
Hello,
I have an old tablet, which i would like to have SSL Inspection enabled. But this will not work for Signal, even if .whispersystems.org and .signal.org are inserted into no ssl bump sites.
It still reclams the certificate, e.g.:
kid1| ERROR: negotiating TLS on FD 30: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed (1/-1/0)
Does anybody know, how i can handle Signal having ssl inspection enabled? Btw. the proxy is not transparent.
«
Last Edit: February 01, 2021, 08:43:25 am by ruggerio
»
Logged
mikewilc
Newbie
Posts: 1
Karma: 0
Re: Signal App only working if SNI enabled
«
Reply #1 on:
March 09, 2023, 09:17:56 am »
Signal is using certificate pinning and also highly customized TLS traffic, so SSL No Bump doesn't work.
If you really need full SSL Inspection enable Censorship circumvention within iOS/Android application to allow Signal to work. Not sure if it's possible with Signal Desktop.
Mike
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
Signal App only working if SNI enabled