Re: Canadian census snake oil...

Paul Rubin wrote:
The stuff passing through the proxy is ciphertext.

Oops. I thought there was a design where you make an HTTP/HTTPS connection to the proxy (and verify its certificate) and the proxy makes an independent HTTPS connection to the remote host (and verifies its certificate). Fine and even useful if you trust the proxy. But I guess I'm wrong and this kind of proxy doesn't exist at all.

-- Ben