On Tue, Mar 13, 2018 at 9:06 PM, Matus UHLAR - fantomas <uh...@fantomas.sk>
> On 13.03.18 20:37, Al Grant wrote:
>> I have been told it would be good practice to respect users privacy when
>> comes to banking and health websites.
> it's good practice respect users privacy when it comes to all websites.
> I am not sure whether this means not logging those websites, not caching
>> them or something else?
> in fact, both. However it's not a problem unless you bump SSL connections.
> without it, you just see CONNECT requests in proxy logs, which doesn't
> violate privacy.
So would you see all the URLs for a given site in the logs?
> Bumping SSL connections means decrypting the traffic and removing privacy.
> (SSL is designed for end-to-end encryption and valication).
> Bumping decrypts the connection, provide own certificates, and make own SSL
> connection to the web sites.
> Users will not see the green bar commonly seen at banking sites, coming
> extended validation certificate.
I don't see the need to go as far as filtering traffic based on content.
However I would like to be able to view the URLs visited.
Thanks for the explanation.
"Beat it punk!"
- Clint Eastwood
squid-users mailing list