Re: Great Firewall/Australia censorship proposal

Derio wrote:

Leythos <spam999free@xxxxxxxxxx> wrote in
news:MPG.23a333047b1b7f2598974a@xxxxxxxxxxxxxxxxxxxx:

In article <gha766$s83$1@xxxxxxxx>, chilly8@xxxxxxxxxxx says...
Sound like just what is needed for people to listen to our
online radio station from behind work firewalls.


And, again, it's easy to spot in a firewall and would NOT work on a
properly setup firewall/network.


You don't know what you're talking about.

NOTE: soc.culture.china removed from my reply. Not a related group.

Engage that 2nd brain cell. Does it really matter that you are
encrypting your data for someone whose resources you are using from
blocking that data? No. Do they need to know what is the data to block
it? No. They can get the same software that you can. They can trace
which SSL proxies are used to encrypt that data traffic. Once they have
the IP addresses, poof, they get blocked. Never been banned from a
forum, have you? Such abusers then attempt to use anonymous proxies
which then get banned, too. Go read up on WebSense, censoring software
and service used by many corporations to regulate their own employees
using the company's resources. Anonymous proxies are probably another
category on which you can block the proxies, of course that being after
already detecting whether or not you are using a VPN connect and
deciding whether or not to allow you such a connect.

Since you're using their resources, they could simply and eventually ban
VPN connects unless you use their cert (so they can decrypt) with their
proxy and perhaps only with a permit and any other VPN connects are
rejected.

The suggested site doesn't do anything new. It's an old trick, it's
easily detected. It's easily blocked. Why do you think that the site
never divulges just how they purport to secure your traffic? Because it
would become obvious that it's just another SSL anonymizing proxy
selector. Ooooh. The censor can get the same software to obtain a list
of the same proxies, and then ban them.
.

Relevant Pages

  • Re: operationg system firewall question
    ... They may or may not add proxies on top. ... In general Windows based firewalls are easiest for most to ... For most a hardware device seems to be the best solution. ...
    (comp.security.firewalls)
  • Re: Server push
    ... > the connection bar to ensure that the requested action is still valid. ... if you really want to reproduce server push you will need an activex ... > a lot of firewalls and proxies will stamp all over this and time the ...
    (comp.lang.php)
  • Re: [fw-wiz] Firewalls that generate new packets..
    ... and most of their competitors have proxies. ... Long live proxy firewalls. ... But if my experience with Internet-enabled software vendors is anywhere ...
    (Firewall-Wizards)
  • Re: [fw-wiz] Firewalls that generate new packets..
    ... I believe this goes into the "proxies rawk" folder alongside my posts. ... I really would like to see a thorough analysis of the performance of an application layer policy enforcement using strictly stateful inspection ... I am not certain this could be done using any COTS firewalls today b/c the implementations have blurred the distinctions. ... Long live proxy firewalls. ...
    (Firewall-Wizards)