Lyrebird and obfs4 development

OK, thanks.

Having a look at lyrebird’s commit history, I stumbled upon this commit, which removes a “maintainer’s rant” in a README file.

Here is an extract from the part removed:

Honestly, it is possible to create a better obfuscation protocol than
obfs4, and it’s shelf-life expired years ago. No one should be using
it for anything at this point, and no one should have been using it
for anything for the past however many years since I first started
telling people to stop using it.
People should also have listened when I told them repeatedly that there
are massive issues in the protocol.

This quote is from the original developer of obfs4proxy, Yawning Angel, according to that file’s commit history.

I don’t like to have a negative tone, I’m aware that the Tor Project fixed a bug in obfs4proxy last october, and that obfs4 bridges can escape blocking in some countries like Russia, but this “rant” from Yawning Angel is concerning. Is there something wrong with obfs4proxy?

Yes, there are theoretical attacks for censors to discover tor traffic over obfs4. But they are not easy for censors to apply and we haven’t seen them used in practice. We do trust obfs4 as one of our best tools to circumvent censorship. The real problems we face today with obfs4 is not the protocol being detected, but the censors finding ways to retrieve most bridges from our distribution mechanisms (and blocking them).

That doesn’t mean we should stop searching for better pluggable transports. We are working on snowflake, webtunnel or conjure, getting ready if one day obfs4 is being blocked.

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.