LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Closed Thread
 
Search this Thread
Old 06-17-2011, 04:41 PM   #1
Ulysses_
Member
 
Registered: Jul 2009
Posts: 645

Rep: Reputation: 42
Transparent proxy for LAN works, except HTTPS


Successfully set up a transparent proxy where all HTTP traffic from PC's in a LAN is forced to go through the proxy running in one PC, whereby the PC is offering protection with privoxy and anonymity with ultrasurf as a parent proxy.

But the same with HTTPS does not work, apparently because:

Quote:
A primary purpose of HTTPS is to prevent "man-in-the-middle", which is exactly what a transparent proxy like this is trying to do. To do so, you'd need to have a certificate valid for everything or a system to generate certificates on the fly. In either case you're going to need an internal CA (no already-trusted external one will give you a cert for anything you don't control) and to install that root as trusted in all systems behind the proxy.
How do I do these?

Last edited by Ulysses_; 06-17-2011 at 05:20 PM.
 
Old 06-17-2011, 10:22 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
By doing this (which is indeed a MITM attack), one would be severely damaging the privacy and security of the individuals using the server. For that reason, this request for help is incompatible with the LQ Rules, and I'm putting an end to this thread.
 
  


Closed Thread


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
transparent proxy squid: problem with the HTTPS pnguwe Linux - Networking 7 11-22-2011 08:00 AM
https in transparent proxy DeepY0X Linux - Networking 14 03-09-2009 01:49 PM
Transparent squid works as normal proxy - help please Ronin_tekorei Fedora 2 01-06-2008 11:12 PM
HTTPS Proxy to provide secure access to LAN pages? jantman Linux - Security 2 10-22-2007 09:21 PM
Can my Linux box be used as a transparent proxy on the LAN side of my router? Steve2001 Linux - Networking 5 02-01-2005 11:12 AM


All times are GMT -5. The time now is 12:59 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration