Longo, John wrote:
Heya,
Well because the information sent from the client to the proxy is sent in
clear text. Isn't that a huge security flaw?
John,
Are you concerned 'zee russians' may have taken over your corporate
proxy? The whole point of using a _caching_ proxy is that the proxy can
examine the request and for instance use the local cache to retrieve the
content instead of sending the request to the remote server.
Oleg
John
-----Original Message-----
From: Roland Weber [mailto:[EMAIL PROTECTED]
Sent: Wed 7/4/2007 2:40 AM
To: HttpClient User Discussion
Subject: Re: HttpClient ProxyHost and SSL
Hello,
It was recently brought to my attention that our application, when using
SSL communication and a Proxy, is communicating to the proxy via
straight http, and not https.
Yes, that works exactly as designed. SSL provides end-to-end encryption,
the SSL connection is established between the client and the server, not
between the client and the proxy.
Is there no way around this?
What would be the point of encrypting the data to the proxy twice,
if it is subsequently sent from the proxy to the server encrypted
only once?
cheers,
Roland
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
