NotHereToPlayGames Posted April 2 Share Posted April 2 I'm unsure if QUIC is being disabled at the "IT Level" as that test was from at work. I do know that I don't have it disabled at the "browser level", at least not here at work. Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted April 2 Share Posted April 2 (edited) @NotHereToPlayGames Another important fact to know is that the website can use QUIC before any login and afterwards switch to a TLS1.3 connection. NextDNS works like this. Probably more users would be satisfied by such a choice. Edited April 2 by Sampei.Nihira 1 Link to comment Share on other sites More sharing options...
NotHereToPlayGames Posted April 2 Share Posted April 2 My test above was without any login. Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted April 2 Share Posted April 2 (edited) For users who do not like to use QUIC,another caveat is for mobile devices. Opera Android has no flags to enable or disable QUIC which seems to be active by default: The forum in the image obviously uses QUIC. Can any forum members verify what happens with Firefox mobile? Edited April 2 by Sampei.Nihira Link to comment Share on other sites More sharing options...
NotHereToPlayGames Posted April 2 Share Posted April 2 Perhaps it's your ISP? I cannot find a QUIC connection anywhere, at home or at work. I've done nothing to disable QUIC in the test profile. Link to comment Share on other sites More sharing options...
D.Draker Posted April 2 Author Share Posted April 2 6 hours ago, Sampei.Nihira said: With this post my intervention is definitely concluded. Good luck for your poll. Thank you! 1 Link to comment Share on other sites More sharing options...
D.Draker Posted April 2 Author Share Posted April 2 3 hours ago, NotHereToPlayGames said: I cannot find a QUIC connection anywhere, at home or at work. I've done nothing to disable QUIC in the test profile. The same here, no sites use it. I removed thee disable flag and tried several "modern" ones that I could think of. 1 Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted April 2 Share Posted April 2 (edited) 1 hour ago, NotHereToPlayGames said: Perhaps it's your ISP? I cannot find a QUIC connection anywhere, at home or at work. I've done nothing to disable QUIC in the test profile. Maybe for my Windows 10 PC. But what to think for the smartphone? W.10 and W.11 have native QUIC support. Do you use either of these OSes for your tests? Unfortunately, MSQUIC is also supported by recent operating systems. Edited April 2 by Sampei.Nihira Link to comment Share on other sites More sharing options...
D.Draker Posted April 2 Author Share Posted April 2 4 hours ago, Sampei.Nihira said: Unfortunately, MSQUIC is also supported by recent operating systems. Yes, this is very unfortunate. They would be more secure otherwise. 6 Link to comment Share on other sites More sharing options...
NotHereToPlayGames Posted April 2 Share Posted April 2 2 hours ago, Sampei.Nihira said: W.10 and W.11 have native QUIC support. Do you use either of these OSes for your tests? I'm on Win10. Both here at home and at work. Work would be a much newer version of Win10. Work is also Pro and not Enterprise. I'm actually "backwards" and use Enterprise at HOME versus at work. Link to comment Share on other sites More sharing options...
Saxon Posted April 3 Share Posted April 3 18 hours ago, NotHereToPlayGames said: at work At work we use an enterprise grade VPN, we aren't allowed to visit the internet without it. Even though our VPN IP is still shown as our real location (Belgium). It's simply a safety precaution. So! QUIC doesn't work with most VPN providers out there! They say there's only one paid provider which claim they do, but I never checked. https://www.reddit.com/r/VPN/comments/l3mxfe/any_quic_protocol_based_vpn_tunnel_software/ 3 Link to comment Share on other sites More sharing options...
Saxon Posted April 3 Share Posted April 3 On 4/2/2024 at 4:25 PM, NotHereToPlayGames said: I'm unsure if QUIC is being disabled at the "IT Level" as that test was from at work. Most likely not, QUIC is aimed and designed to bypass firewalls, it could be, and most likely will, used against good. 4 Link to comment Share on other sites More sharing options...
Saxon Posted April 3 Share Posted April 3 "I just block it, source browser detects that quic isnt working and reverts to ssl instead. Easy" "Just block it where you need full visibility. Probably in the future vendors and sec-experts will come up with something to work with QUIC." This article on Reddit. 4 Link to comment Share on other sites More sharing options...
Saxon Posted April 3 Share Posted April 3 "I block it...it's proxy avoidance." https://www.reddit.com/r/cybersecurity/comments/wiquz1/with_quic_what_is_going_to_happen_to_firewalls/ 4 Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted April 3 Share Posted April 3 17 hours ago, NotHereToPlayGames said: I'm on Win10. Both here at home and at work. Work would be a much newer version of Win10. Work is also Pro and not Enterprise. I'm actually "backwards" and use Enterprise at HOME versus at work. If you want to access the advanced encryption features, you have to enable both in the smartphone browser and in the browser in W.10/11 also Secure DNS. If secure DNS is disabled QUIC will not work. Try a test. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now