RE: HTTPS bridging and application filters
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 2 Feb 2006 08:58:54 -0600
Hi Jim,
Thanks! I wasn't sure if Web filters would inspect a bridged connection.
Its always amazed me that other countries palliate the citizens with
"right to privacy" laws, but rape them in multiple orifices when it
comes to taxes.
If you'll reduce my tax burden to ten percent, you can read everything I
do over an SSL channel (if I'm on YOUR network, you can't read what I do
on MY network).
Thank!
Tom
Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://spaces.msn.com/members/drisa/
Book: http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
> -----Original Message-----
> From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
> Sent: Thursday, February 02, 2006 8:49 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: HTTPS bridging and application filters
>
> http://www.ISAserver.org
>
> Like I told him:
>
> By default, all HTTP(s) traffic that ISA *can* see (read: only that
> which is bridged) is handled by the web proxy filter.
> What you want to write is a web filter (similar to an ISAPI filter).
>
> You have to bear in mind that "outbound" HTTPS traffic *can not* been
> seen by any ISA filter as the connection is tunneled.
>
> You also need to be aware that in several countries, breaking a
> encrypted connection that is not served by you is a violation
> of privacy
> laws.
>
> --------------------------------------------
> Jim Harrison
> MCP(NT4, W2K), A+, Network+, PCG
> http://isaserver.org/Jim_Harrison/
> http://isatools.org
> Read the help / books / articles!
> --------------------------------------------
>
> -----Original Message-----
> From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
> Sent: Thursday, February 02, 2006 6:22 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] HTTPS bridging and application filters
>
> http://www.ISAserver.org
>
>
> Any dev type guys out there who might be able to help this
> guy? Thanks!
>
> HTTPS bridging and application filters:
> http://forums.isaserver.org/HTTPS_bridging_and_application_fil
> ters/m_200
> 2005876/tm.htm
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> jim@xxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
> All mail to and from this domain is GFI-scanned.
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion
> List as: tshinder@xxxxxxxxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
Other related posts:
