Hi all, Are we (the ISP community) still using the IWF URL blacklist?
I would have thought with all the web being HTTPS now, very few of the blacklist would be served from port 80 unencrypted so there's little opportunity to inspect the HTTP headers. Or are we faking certificates and doing MITM "attacks" on the hosts of know bad URLs? Be interested to know what the consensus is as the CEO seems to have just found out that there are bad things on the net, read about the IWF blacklist and is keen that "something must be done". Aled
