Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


Closed Thread
  Search this Thread
Old 06-17-2011, 04:41 PM   #1
Senior Member
Registered: Jul 2009
Posts: 1,080

Rep: Reputation: 45
Transparent proxy for LAN works, except HTTPS

Successfully set up a transparent proxy where all HTTP traffic from PC's in a LAN is forced to go through the proxy running in one PC, whereby the PC is offering protection with privoxy and anonymity with ultrasurf as a parent proxy.

But the same with HTTPS does not work, apparently because:

A primary purpose of HTTPS is to prevent "man-in-the-middle", which is exactly what a transparent proxy like this is trying to do. To do so, you'd need to have a certificate valid for everything or a system to generate certificates on the fly. In either case you're going to need an internal CA (no already-trusted external one will give you a cert for anything you don't control) and to install that root as trusted in all systems behind the proxy.
How do I do these?

Last edited by Ulysses_; 06-17-2011 at 05:20 PM.
Old 06-17-2011, 10:22 PM   #2
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 377Reputation: 377Reputation: 377Reputation: 377
By doing this (which is indeed a MITM attack), one would be severely damaging the privacy and security of the individuals using the server. For that reason, this request for help is incompatible with the LQ Rules, and I'm putting an end to this thread.

Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
transparent proxy squid: problem with the HTTPS pnguwe Linux - Networking 7 11-22-2011 08:00 AM
https in transparent proxy DeepY0X Linux - Networking 14 03-09-2009 01:49 PM
Transparent squid works as normal proxy - help please Ronin_tekorei Fedora 2 01-06-2008 11:12 PM
HTTPS Proxy to provide secure access to LAN pages? jantman Linux - Security 2 10-22-2007 09:21 PM
Can my Linux box be used as a transparent proxy on the LAN side of my router? Steve2001 Linux - Networking 5 02-01-2005 11:12 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:08 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration