alt Hacker NewsComparing hashes of responses without knowing what is inside wouldn’t work?
Replies
woofcat • yesterday at 3:28 PM
No, as the request headers would be different for things like time.
➕ show 1 reply
Comparing hashes of responses without knowing what is inside wouldn’t work?
No, as the request headers would be different for things like time.
No it would not work. TLS protects against replay attacks by design, the same response (or query) in clear text will not look the same in encrypted traffic