"Boobs check" – Technique to verify if sites behind CDN are hosted in Iran
73 points
1 hour ago
| 6 comments
| twitter.com
| HN
https://xcancel.com/hkashfi/status/1995109785679573167
shishcat
4 minutes ago
[-]
This behavior only works when the reverse proxy or CDN is configured like this:

Proxy/CDN: HTTPS (443) → Origin server: plain HTTP (80)

(example: Cloudflare in Flexible mode)

If the origin server uses any proper TLS configuration, even a self-signed certificate, this method stops working. It only succeeds when the upstream connection to the origin is unsecured.

If you want to test this on a random site without Cloudflare or reverse proxy in general on HTTP: curl http://www.digiboy.ir/boobs.jpg -v

reply
Yokolos
5 minutes ago
[-]
I'm wondering for what purpose one would be interested in finding out if a site is hosted in Iran or not.
reply
Aloisius
7 minutes ago
[-]
So presumably Iran has a reverse proxy in front of the entire internet for HTTP?

I really want to know what's on the webpage for the iframe.

reply
KiranRao0
19 minutes ago
[-]
Does anyone have sample sites that return this?
reply
phgn
2 minutes ago
[-]
Also interested in a sample site where the request successfully resolves :D
reply
lovegrenoble
10 minutes ago
[-]
Why not?
reply
ThePowerOfFuet
30 minutes ago
[-]
https://xcancel.com/hkashfi/status/1995109785679573167
reply
Boogie_Man
17 minutes ago
[-]
Thanks for posting this. I mostly gave up on viewing the one or two Twitter feeds that interest me after nitter stopped working. It wasn't ideological, I just wasn't able to reliably view and navigate without an account, and when I made an account it just kept showing me like "black HS football player bad sportsmanship".

Look like I've got about two years of James Cage White story arcs to check in on.

reply