[GH-ISSUE #144] 将Shadowsocks Rust的加密设置为None是否安全？ #117

New issue

Closed

opened 2026-02-26 12:34:01 +03:00 by kerem · 2 comments

kerem commented 2026-02-26 12:34:01 +03:00

Owner

Copy link

Originally created by @windstander on GitHub (Dec 14, 2020).
Original GitHub issue: https://github.com/cbeuw/Cloak/issues/144

因为SS的数据外层套了一个Cloak伪造的TLS，所以SS流量本身的加密设置为None是否也是安全的并能大幅提升速度？

Originally created by @windstander on GitHub (Dec 14, 2020). Original GitHub issue: https://github.com/cbeuw/Cloak/issues/144 因为SS的数据外层套了一个Cloak伪造的TLS，所以SS流量本身的加密设置为None是否也是安全的并能大幅提升速度？

kerem closed this issue 2026-02-26 12:34:01 +03:00

kerem commented 2026-02-26 12:34:02 +03:00

Author

Owner

Copy link

@windstander commented on GitHub (Dec 21, 2020):

Cloak isn't intended to provide transport security. The point of encryption is to hide fingerprints of proxy protocols and render the payload statistically random-like. You may only leave it as plain if you are certain that your underlying proxy tool already provides BOTH encryption and authentication (via AEAD or similar techniques).

这样来看，还是SS加密，Cloak为Plain比较好。

<!-- gh-comment-id:748717887 --> @windstander commented on GitHub (Dec 21, 2020): Cloak isn't intended to provide transport security. The point of encryption is to hide fingerprints of proxy protocols and render the payload statistically random-like. You may only leave it as plain if you are certain that your underlying proxy tool already provides BOTH encryption and authentication (via AEAD or similar techniques). 这样来看，还是SS加密，Cloak为Plain比较好。

kerem commented 2026-02-26 12:34:02 +03:00

Author

Owner

Copy link

@MXzander commented on GitHub (Dec 3, 2022):

因为SS的数据外层套了一个Cloak伪造的TLS，所以SS流量本身的加密设置为None是否也是安全的并能大幅提升速度？

<!-- gh-comment-id:1336218290 --> @MXzander commented on GitHub (Dec 3, 2022): > 因为SS的数据外层套了一个Cloak伪造的TLS，所以SS流量本身的加密设置为None是否也是安全的并能大幅提升速度？

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

renovate/go-github.com-refraction-networking-utls-vulnerability

dependabot/go_modules/golang.org/x/crypto-0.45.0

utls-1.7.0

deps-20250430

padding

docker-tests

ptspec

legacy-v1

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.1-pre

v2.7.0

v2.6.1

v2.6.0

v2.5.5

v2.5.4

v2.5.3

v2.5.2

v2.5.1

v2.5.0

v2.4.1

v2.4.0

v2.3.2

v2.3.1

v2.3.0

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.2

v2.0.1

v2.0.0

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.2.0

v0.1.0

Labels

Clear labels   

pull-request

Mirrored from GitHub Pull Request

No labels

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/Cloak#117

No description provided.