Re: [GLUG-tech] squid + transparent proxying + ssl prots ?

To: debian-user@lists.debian.org
Subject: Re: [GLUG-tech] squid + transparent proxying + ssl prots ?
From: Paul Johnson <baloo@ursine.ca>
Date: Mon, 10 May 2004 11:12:46 -0700
Message-id: <[🔎] 87n04gm9r5.fsf@ursine.ca>
In-reply-to: <[🔎] 409F475F.20905@sharp.fm> (Graham Leggett's message of "Mon, 10 May 2004 11:11:59 +0200")
References: <[🔎] 30014.165.165.98.133.1084180614.squirrel@webmail.attcolstudents.com> <[🔎] 409F475F.20905@sharp.fm>

Graham Leggett <minfrin@sharp.fm> writes:

> Long answer: SSL is specifically designed to prevent "man in the
> middle" attacks, and setting up squid in such a way would be the same
> as such a "man in the middle" attack. You might be able to
> successfully achive this, but not without breaking the encryption and
> certification that is the point behind SSL.

Nope, you can proxy SSL without breaking it.

-- 
Paul Johnson
<baloo@ursine.ca>
Linux.  You can find a worse OS, but it costs more.

Attachment: pgpmwcVcZPMgE.pgp
Description: PGP signature

Reply to:

References:
- squid + transparent proxying + ssl prots ?
  - From: linuxinfo@linuxpro.co.za
- Re: [GLUG-tech] squid + transparent proxying + ssl prots ?
  - From: Graham Leggett <minfrin@sharp.fm>

Prev by Date: Re: Recommendation on Digital Cameras that work well with linux....and...
Next by Date: Re: Recommendation on Digital Cameras that work well with linux....and...
Previous by thread: Re: [GLUG-tech] squid + transparent proxying + ssl prots ?
Next by thread: Almost there: CUPS, Samba 3.0 !
Index(es):
- Date
- Thread