[TriLUG] Frontier doing packet inspection?
David Brain
dbrain at gmail.com
Sun Dec 8 13:38:14 EST 2013
Hi,
On Sun, Dec 8, 2013 at 1:22 PM, Craig Cook <cncook001 at yahoo.com> wrote:
>
> Some proxies can intercept traffic by doing man-in-the-middle type games. I know blue coat proxies can intercept ssl traffic and pass it back to you without the user being aware.
Hopefully not (at least that I am aware of !) - you'd at least have to
trust a non-standard CA for SSL inspection/interception to work, at
least that's how it works on the BlueCoat (and other web filter
products I've seen). There's some filtering & logging (and of course
straight up proxying) that can be done without decrypting SSL based on
certificate content, IPs & SNI but nothing that can be seen in the
payload itself. Of course in a corp network pushing out an additional
CA cert via group policy or such like is pretty easy....
>
David.
More information about the TriLUG
mailing list