A monthly overview of things you need to know as an architect or aspiring architect.
View an example
We protect your privacy.
Facilitating the Spread of Knowledge and Innovation in Professional Software Development
Holly Cummins discusses some of the technical underpinnings of Quarkus’s efficiency, providing advice for those using or considering Quarkus.
Jessica Felix discusses how to navigate the intricate balance between performance and observability, and the challenges of maintaining equilibrium.
Andrey Cheptsov discusses the practical use of open-source LLMs for real-world applications, weighing their pros and cons, highlighting advantages like privacy and cost-efficiency.
In this podcast Shane Hastie, Lead Editor for Culture & Methods spoke to John Heintz about the gap between technical expertise and user experience, highlighting the importance of understanding human psychology in data-driven decision-making.
Michael Friedrich tells a story about experienced pain points, wasted hours debugging and solving, and learning how a little help from AI makes DevSecOps workflows efficient again.
Discover emerging trends, insights, and real-world best practices in software development & tech leadership. Join now.
Learn how senior software developers are solving the challenges you face. Register now with early bird tickets.
Explore insights, real-world best practices and solutions in software development & leadership. Register now.
Your monthly guide to all the topics, technologies and techniques that every professional needs to know about. Subscribe for free.
InfoQ Homepage News Mitmproxy 11 Released: Full HTTP/3 Support and DNS Enhancements
This item in japanese
Oct 05, 2024 2 min read
by
Mitmproxy released version 11, introducing some upgrades, including full support for HTTP/3 in both transparent and reverse proxy modes. Alongside the HTTP/3 advancements, this release brings a range of DNS-related improvements, enhanced privacy features, and better handling of modern web protocols.
Alongside the HTTP/3 advancements, mitmproxy 11 brings several DNS-related improvements. In previous versions, mitmproxy’s DNS functionality was limited to A/AAAA queries (for IPv4/IPv6 addresses) using the getaddrinfo API. However, with the introduction of the Rust-based Hickory DNS library, mitmproxy can now support a broader range of query types, including HTTPS records, which signal HTTP/3 support. This upgrade ensures better alignment with modern DNS requirements, making mitmproxy more versatile for network analysis.
Furthermore, the new version supports DNS-over-TCP, a critical enhancement for handling larger DNS responses that cannot fit into a single UDP packet. Mitmproxy also introduces options like dns_name_servers, allowing users to specify custom DNS servers, and dns_use_hosts_file, which enables the bypassing of the system hosts file for better flexibility. These features give users better control over DNS handling, allowing for a variety of use cases.
Another improvement in this release is the handling of Encrypted Client Hello (ECH), a new privacy feature designed to obscure the target domain from passive observers during the TLS handshake. While ECH enhances privacy, it complicates mitmproxy’s ability to generate certificates for intercepted connections. To address this, mitmproxy 11 now strips ECH keys from DNS HTTPS records, allowing the proxy to function while maintaining visibility into the target domain.
The update also sparked community discussion. User Onavo raised the question:
Do HTTP/2 and HTTP/3 offer any benefits if they are only supported by the reverse proxy but not the underlying web server? Most mainstream JS/Python/Ruby frameworks do not support the newer HTTP standards. Will not the web server be a bottleneck for the reverse proxied connection?
AgentME responded by clarifying:
Yes, because HTTP/2 or HTTP/3 will improve the reliability of the connection between the client and the reverse proxy. The connection between the reverse proxy and the underlying web server is usually much faster and more reliable, so that part would benefit much less from being upgraded to HTTP/2 or HTTP/3.
These updates are part of a larger effort supported by the Google Summer of Code under the Honeynet Project. They were developed by Gaurav Jain, a student contributor who worked on them under the mentorship of Maximilian Hils.
The new version can now be downloaded directly from the official Mitmproxy website.
Each year, we seek feedback from our readers to help us improve InfoQ.
Would you mind spending 2 minutes to share your feedback in our short survey?
Your feedback will directly help us continually evolve how we support you.
The InfoQ Team
A round-up of last week’s content on InfoQ sent out every Tuesday. Join a community of over 250,000 senior developers. View an example
We protect your privacy.
A round-up of last week’s content on InfoQ sent out every Tuesday. Join a community of over 250,000 senior developers. View an example
- Conference: April 7-9, 2025
- Certification workshop: April 10, 2025
QCon London International Software Development Conference returns on April 7-10, 2025. Level-up on 15 major software and leadership topics including; The Tech of FinTech, AI & ML in Software Engineering, Modern Data Architectures, Engineering Productivity, The Path to Senior Engineering Leadership, Supply Chain Security, and more.
Learn the emerging trends. Explore the use cases. Implement the best practices.
Register Now
InfoQ.com and all content copyright © 2006-2025 C4Media Inc.
Privacy Notice, Terms And Conditions, Cookie Policy
About The Author
More Stories
On Global Accessibility Awareness Day, An Internet for Everyone Must Include Everyone
An Open Fiber Data Standard to Make the Internet for Everyone
How RightsCon Is an Unexpected Stress Test for the Multistakeholder Model of Internet Governance