Re: "pre-treating" documents from certain remote URLs before a web browser renders them

To: debian-user@lists.debian.org
Subject: Re: "pre-treating" documents from certain remote URLs before a web browser renders them
From: <tomas@tuxteam.de>
Date: Thu, 17 May 2018 08:49:04 +0200
Message-id: <[🔎] 20180517064904.GB30142@tuxteam.de>
In-reply-to: <[🔎] 877eo3uhyw.fsf@niobium.community.veritas.com>
References: <[🔎] alpine.DEB.2.10.1805150044090.11232@freevolt.org> <[🔎] alpine.DEB.2.10.1805170048420.16828@freevolt.org> <[🔎] 877eo3uhyw.fsf@niobium.community.veritas.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, May 16, 2018 at 07:35:51PM -0700, Kushal Kumaran wrote:

[...]

> You should note that HTTP-proxy based systems will not be able to do any
> inspection or modification of traffic for sites using HTTPS.

This is true... and then it's not :-)

If your proxy terminates the HTTPS connection, effectively doing a
"man-in-the-middle" (but controlled by you), it can: most probably
you'd have to fool your browser by offering it a HTTPS connection
from the proxy, and by installing a trusted root certificate you
create yourself. Basically what the proxy in your $CORPORATION does
all of the time.

I don't know whether privoxy or squid can do that (I'd love to know,
mind you, but days are so short).

Cheers
- -- tomás
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlr9JeAACgkQBcgs9XrR2kZlfgCfUj93U5VfwlbzO6HPxLCjQIIP
a20AnjQmH9FHDdVbIujYUJTKE+OTqkYJ
=Lits
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: "pre-treating" documents from certain remote URLs before a web browser renders them
  - From: Celejar <celejar@gmail.com>
- Re: "pre-treating" documents from certain remote URLs before a web browser renders them
  - From: Reco <recoverym4n@gmail.com>

References:
- "pre-treating" documents from certain remote URLs before a web browser renders them
  - From: davidson <davidson@freevolt.org>
- Re: "pre-treating" documents from certain remote URLs before a web browser renders them
  - From: davidson <davidson@freevolt.org>
- Re: "pre-treating" documents from certain remote URLs before a web browser renders them
  - From: Kushal Kumaran <kushal@locationd.net>

Prev by Date: Re: "pre-treating" documents from certain remote URLs before a web browser renders them
Next by Date: Re: running arecord via ssh
Previous by thread: Re: "pre-treating" documents from certain remote URLs before a web browser renders them
Next by thread: Re: "pre-treating" documents from certain remote URLs before a web browser renders them
Index(es):
- Date
- Thread