Hacker News new | ask | show | jobs
by spand 3391 days ago
No that is not all an attacker could know. TLS does not provide confidentiality of the number of bytes transmitted. So in your example an attacker would only have to crawl the public website and find the pages matching in size to the ones you have been browsing.
4 comments
mi100hael 3391 days ago
There are web server modules that will append random-length comments to the end of a page's HTML in order to foil this kind of attack

https://github.com/nulab/nginx-length-hiding-filter-module

link
paulddraper 3391 days ago
Cookies, user-agent header, and keep-alives will make that very hard to figure out.
link
rplst8 3391 days ago
Couldn't this be thwarted by injecting random bytes into each page served to vary the file sizes?
link
cmdrfred 3391 days ago
Good point I hadn't considered that.
link