SSL certificates in IRAN Blocked

After spending a day trying to figure out why my website was not visible from within Iran, I finally figured it out.  My website was timing out every single time.  Then I noticed in Firefox status bar that my sites were crashing during the TLS handshake phase.  I did all kinds of research trying to see if the browser had a default time setting for the TLS handshake.  I could not find anything.

But then it occurred to me that maybe I could bypass the TLS handshake by doing a simple http request.  Sure enough!  Iran is blocking all https requests from within Iran.  In other words, encryption of the website is not possible from within iran.  This is a sure fire way for the Iranian government to spy on their citizens.

I didnt know why I wasnt getting any emails from within Iran for the past 6-12 months but now I know.  Pass the word around.

After spending a day trying to figure out why my website was not visible from within Iran, I finally figured it out.  My website was timing out every single time.  Then I noticed in Firefox status bar that my sites were crashing during the TLS handshake phase.  I did all kinds of research trying to see if the browser had a default time setting for the TLS handshake.  I could not find anything.

But then it occurred to me that maybe I could bypass the TLS handshake by doing a simple http request.  Sure enough!  Iran is blocking all https requests from within Iran.  In other words, encryption of the website is not possible from within iran.  This is a sure fire way for the Iranian government to spy on their citizens.

I didnt know why I wasnt getting any emails from within Iran for the past 6-12 months but now I know.  Pass the word around.

Do you mean self signed ssl ?   SSL is not some thing that Iranian government will want to prevent . There are all kinds of shopping mall , banks etc even in Iran so to stop SSL will harm themselves even more.  No you are wrong or probably it has some thing to do with your own site's nature . Do you have a site that Iranian government might want to monitor ? Perhaps that is the reason on the other hand please note SSL can be slower   NO?

If you google this you will see that I am right.  Iran government started blocking cert validations.  Its the easiest way to stop all traffic that is encrypted.  They want to be able to intercept non encrypted traffic and monitor the people. Google it.

If you google this you will see that I am right.  Iran government started blocking cert validations.  Its the easiest way to stop all traffic that is encrypted.  They want to be able to intercept non encrypted traffic and monitor the people. Google it.

What about when you do not have SSL  is your site blocked or not?
What about your site contents ? Is your host located in  Iran or outside of Iran? Does you site have any contents that
the government might have blocked it?
Also what kind of SSL are you using is it Self assigned or did you pay for it?

HTTP works
HTTPS does not work

TLS handshake is stopped by Iran government.