[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

HTTPS redirects to HTTP for monitoring

Subject: HTTPS redirects to HTTP for monitoring
From: johnl at iecc.com (John Levine)
Date: 18 Jan 2015 18:15:09 -0000
In-reply-to: <[email protected]>

>> So your idea is to block every HTTPS website?
>From my point of view, it is better than violate user privacy & safety.
>
>Sneaky is evil.

I expect your users would fire you when they found you'd blocked access to Google.

>>> These boxes that violate end to end encryption are a great place for
>>> hackers to steal the bank and identity info of everyone in your company.

Since the end user machines are generally running Windows, why would bad guys
waste time on a much harder and more obscure target?

Follow-Ups:
- HTTPS redirects to HTTP for monitoring
  - From: cb.list6 at gmail.com (Ca By)
- HTTPS redirects to HTTP for monitoring
  - From: wwaites at tardis.ed.ac.uk (William Waites)

References:
- HTTPS redirects to HTTP for monitoring
  - From: nanog at jack.fr.eu.org (nanog at jack.fr.eu.org)

Prev by Date: HTTPS redirects to HTTP for monitoring
Next by Date: HTTPS redirects to HTTP for monitoring
Previous by thread: HTTPS redirects to HTTP for monitoring
Next by thread: HTTPS redirects to HTTP for monitoring
Index(es):
- Date
- Thread