[luigi]

I'd expect to see exploits using Flash sockets as the attack vector before seeing attacks using native WebSockets.

[trotsky]

A vast majority of the installations with these types of vulnerable firewalls don't allow outbound traffic on port 843 which flash needs to be able to communicate on to get raw socket communication permission.

[mloughran]

Where are you getting the 20-30x number from? There is no demonstrated WebSockets attack in the "Transparent Proxies: Threat or Menace?" paper.

[trotsky]

You're right, I reread the paper and I'm not even sure what I was thinking... I was going off of memory. Thanks, and corrected.