On Tue, Mar 13, 2018 at 9:06 PM, Matus UHLAR - fantomas <uh...@fantomas.sk>
wrote:

> On 13.03.18 20:37, Al Grant wrote:
>
>> I have been told it would be good practice to respect users privacy when
>> it
>> comes to banking and health websites.
>>
>
> it's good practice respect users privacy when it comes to all websites.
>
> I am not sure whether this means not logging those websites, not caching
>> them or something else?
>>
>
> in fact, both. However it's not a problem unless you bump SSL connections.
> without it, you just see CONNECT requests in proxy logs, which doesn't
> violate privacy.
>
>
So would you see all the URLs for a given site in the logs?


> .
>>
>
> Bumping SSL connections means decrypting the traffic and removing privacy.
> (SSL is designed for end-to-end encryption and valication).
>
> Bumping decrypts the connection, provide own certificates, and make own SSL
> connection to the web sites.
>
> Users will not see the green bar commonly seen at banking sites, coming
> from
> extended validation certificate.
>
>
I don't see the need to go as far as filtering traffic based on content.
However I would like to be able to view the URLs visited.

Thanks for the explanation.

-- 
"Beat it punk!"
- Clint Eastwood
_______________________________________________
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users

Reply via email to