Re: basic ssl proxy question

• Previous message: Zarggg: "Re: Opinions on the following articles?"
• In reply to: Bjorn Randell: "Re: basic ssl proxy question"
• Next in thread: Bjorn Randell: "Re: basic ssl proxy question"
• Reply: Bjorn Randell: "Re: basic ssl proxy question"
• Reply: Bjorn Randell: "Re: basic ssl proxy question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 26 Jun 2003 02:50:11 +0200

After cancelling my little error (playing around with newsreader
settings), here is my reply once more:

"Bjorn Randell" <Bjorn@AlphaMale.me.uk> wrote:
 
>> The conclusion would be:
>> using an ssl proxy for a file sharing program, or for more
>> "anonymity"
>> in a chat application (like icq) is in vain; it offers not more
>> security
>> than a normal (non-ssl) proxy, true?
>
>When it comes to using an SSL proxy for file sharing, it provides no
>extra
>security than a non-SSL proxy, so true.
>
>The same of course would be true for using ICQ in the same scenario,
>however
>you then have the problem of having a rouge proxy owner who is running
>a
>traffic sniffer for passwords! Is it worth the risk? That's a
>question
>only you can answer :)
 
 
Thanks again and sorry for the delay...
 
I presume, you know about the german anon proxy JAP (java
anonymous proxy), right?
Which, of course, can only be used for surfing, but
not for file sharing and the like...
 
This interesting program, running as a java client on one's own
computer, establishes an encrypted channel to the proxy server/proxy
servers mix cascade.
 
It also offers an option "I'm forced to use a proxy", which allows for
entering a (corporate etc.) proxy server (http, https or socks), which
initiates the connections and only then contacts the JAP proxy
server(s).
 
I suppose/hope, using a "normal" (http, https or socks) proxy first,
before the real JAP server(s), doesn't weaken/defeat any encryption.
At least, that's what JAP support wrote to me, though in a very brief
and vague reply.
Do you know more about this?
 
 
Regards
Fred

• Previous message: Zarggg: "Re: Opinions on the following articles?"
• In reply to: Bjorn Randell: "Re: basic ssl proxy question"
• Next in thread: Bjorn Randell: "Re: basic ssl proxy question"
• Reply: Bjorn Randell: "Re: basic ssl proxy question"
• Reply: Bjorn Randell: "Re: basic ssl proxy question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Maintaining a local yum repository ... get cached in disk, not the whole repo. ... While I'd prefer yum to play nice with a caching proxy that might already be set up, file sharing seems like a reasonable way to share files... ... (Fedora) File Sharing (CIFS) Proxy ... I would like to know if there is any software that could proxy the CIFS ... Some of my colleagues need to access some share folders ... (microsoft.public.win2000.networking) Hiding ip with proxy ... with all the talk of file sharing going away, ... going to try and go around the issue with a proxy. ... to the isp and the customer? ... (comp.security.misc) RE: Which Proxy Server.... ... HTTP, FTP, Telnet, SSL, NNTP and E-Mail all use TCP and can be easily ... MANY proxy servers exists for this purpose. ... (Security-Basics) [SubWeb] NEW http proxy/reverse proxy ... SubWeb is a proxy. ... HTTP flows in the line of HTTPush, ... This list is provided by the SecurityFocus Security Intelligence Alert ... (Pen-Test)