On Tue, Dec 15, 2009 at 9:39 PM, Dan Kaminsky <[email protected]> wrote: > Nix, > > Proxies are not a security technology in the way you think they are.
They're not, but many still use the browsers' proxy features hoping for more anonymity and avoidance of data sniffing. Most users are not security experts. They are not able or are not allowed to use VPNs and such. > leaks. Playing whack-a-mole at the application layer is ultimately > pointless. If you want to prevent network traffic from leaking, you really > need full access to all traffic. It's pointless from the viewpoint of a security expert, not an everyday computer user that uses these features thinking it's harder to sniff traffic. Application bugs like this still need to be disclosed and fixed. No? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
