Re: basic ssl proxy question

From: Fred Holm (youdontspamme_at_hotmail.com.invalid)
Date: 06/26/03

  • Next message: megan: "Re: FIPS 140-1" 
    Date: 26 Jun 2003 02:50:11 +0200

    After cancelling my little error (playing around with newsreader
    settings), here is my reply once more:

    "Bjorn Randell" <Bjorn@AlphaMale.me.uk> wrote:
     
    >> The conclusion would be:
    >> using an ssl proxy for a file sharing program, or for more
    >> "anonymity"
    >> in a chat application (like icq) is in vain; it offers not more
    >> security
    >> than a normal (non-ssl) proxy, true?
    >
    >When it comes to using an SSL proxy for file sharing, it provides no
    >extra
    >security than a non-SSL proxy, so true.
    >
    >The same of course would be true for using ICQ in the same scenario,
    >however
    >you then have the problem of having a rouge proxy owner who is running
    >a
    >traffic sniffer for passwords! Is it worth the risk? That's a
    >question
    >only you can answer :)
     
     
    Thanks again and sorry for the delay...
     
    I presume, you know about the german anon proxy JAP (java
    anonymous proxy), right?
    Which, of course, can only be used for surfing, but
    not for file sharing and the like...
     
    This interesting program, running as a java client on one's own
    computer, establishes an encrypted channel to the proxy server/proxy
    servers mix cascade.
     
    It also offers an option "I'm forced to use a proxy", which allows for
    entering a (corporate etc.) proxy server (http, https or socks), which
    initiates the connections and only then contacts the JAP proxy
    server(s).
     
    I suppose/hope, using a "normal" (http, https or socks) proxy first,
    before the real JAP server(s), doesn't weaken/defeat any encryption.
    At least, that's what JAP support wrote to me, though in a very brief
    and vague reply.
    Do you know more about this?
     
     
    Regards
    Fred

  • Next message: megan: "Re: FIPS 140-1"

    Relevant Pages

    • Re: Maintaining a local yum repository
      ... get cached in disk, not the whole repo. ... While I'd prefer yum to play nice with a caching proxy that might already be set up, file sharing seems like a reasonable way to share files... ...
      (Fedora)
    • File Sharing (CIFS) Proxy
      ... I would like to know if there is any software that could proxy the CIFS ... Some of my colleagues need to access some share folders ...
      (microsoft.public.win2000.networking)
    • Hiding ip with proxy
      ... with all the talk of file sharing going away, ... going to try and go around the issue with a proxy. ... to the isp and the customer? ...
      (comp.security.misc)
    • RE: Which Proxy Server....
      ... HTTP, FTP, Telnet, SSL, NNTP and E-Mail all use TCP and can be easily ... MANY proxy servers exists for this purpose. ...
      (Security-Basics)
    • [SubWeb] NEW http proxy/reverse proxy
      ... SubWeb is a proxy. ... HTTP flows in the line of HTTPush, ... This list is provided by the SecurityFocus Security Intelligence Alert ...
      (Pen-Test)