Re: "pre-treating" documents from certain remote URLs before a web browser renders them
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, May 16, 2018 at 07:35:51PM -0700, Kushal Kumaran wrote:
[...]
> You should note that HTTP-proxy based systems will not be able to do any
> inspection or modification of traffic for sites using HTTPS.
This is true... and then it's not :-)
If your proxy terminates the HTTPS connection, effectively doing a
"man-in-the-middle" (but controlled by you), it can: most probably
you'd have to fool your browser by offering it a HTTPS connection
from the proxy, and by installing a trusted root certificate you
create yourself. Basically what the proxy in your $CORPORATION does
all of the time.
I don't know whether privoxy or squid can do that (I'd love to know,
mind you, but days are so short).
Cheers
- -- tomás
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAlr9JeAACgkQBcgs9XrR2kZlfgCfUj93U5VfwlbzO6HPxLCjQIIP
a20AnjQmH9FHDdVbIujYUJTKE+OTqkYJ
=Lits
-----END PGP SIGNATURE-----
Reply to: