Mitmproxy, a web connection interception tool, has released version 11 with a key feature of supporting HTTP/3 after previously supporting HTTP/2. This feature has been tested on major browsers such as Chrome, Firefox, and cURL. However, Chrome does not accept user-installed certificates, requiring users to utilize the command line for Chrome usage.
Another issue addressed in this version is the support for Encrypted Client Hello (ECH) which hides the domain name being connected to. Mitmproxy now strips ECH data from DNS to prevent browsers from encrypting the domain name. While this may complicate mitmproxy usage, it enhances user privacy.
This version of mitmproxy has been backed by Google Summer of Code and NGI Zero Entrust of the European Union.
TLDR: Mitmproxy version 11 introduces support for HTTP/3 and addresses privacy concerns by handling Encrypted Client Hello data.
Leave a Comment