[fw-wiz] Using SSL accelerators in firewalls

From: Darren Reed (darrenr@reed.wattle.id.au)
Date: 07/17/02


From: Darren Reed <darrenr@reed.wattle.id.au>
To: firewall-wizards@honor.icsalabs.com
Date: Wed Jul 17 03:41:00 2002

There would seem to be a growing trend in using SSL accelerators not
next to the web server but attached to a firewall so that it isn't
https traffic that passes through but http.

To me this screams out "bad design" as the end-to-end encryption is
lost in the process and the security of transactions eroded.

What do others think? Is this becoming a "done thing" that is more
and more acceptable to corporates or is this just an isolated thing?

Darren