discuss: HOWTO idea: Secure Web Gateway Setup On Linux
Subject:
Re: HOWTO idea: Secure Web Gateway Setup On Linux
From:
Anton Chuvakin ####@####.####
Date:
31 Aug 2001 00:53:27 -0000
Message-Id: <Pine.SGI.4.21.0108302048450.17010-100000@insti.physics.sunysb.edu>
Hello all,
>So for being dumb... I still don't get ;)
>I get having a web proxy
>But i don't get how you are get this to work through an ssh tunnel
Hehe ;-) SSH will use port forwarding mode.
Here is a piece of my config for ssh-tunneling of fetchmail:
ssh -C -f -l chuvakin insti.bla.com -L 11110:insti.bla.com:110
Now you can use your pop client to go to port 110 LOCALHOST, instaed of
mail server (in this case insti). Just that simple. All the POP3 traffic
is now encrypted (incl the plain text password).
same can be done for squid in the proposed doc
>btw, If you use ssl, that sends the URL plain text right?
Yes. And you only use ssl with sites that has ssl (i.e. https urls)
Regards,
--
Anton A. Chuvakin, Ph.D.
=== You either succeed or learn! ===
http://www.chuvakin.org
licq: 29034084