[ASK] HTTPS SQUID

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
dhannyharakiri
Posts: 6
Joined: 07 Apr 2011, 11:58
Location: Marabahan
Contact:

[ASK] HTTPS SQUID

Postby dhannyharakiri » 06 Jun 2012, 11:56

Mau tanya, bagaimana caranya aktifin HTTPS di squid, soalnya default squid cuman HTTP aja kan?
User avatar
sipelaut
Posts: 1963
Joined: 03 Jan 2010, 17:25
Location: madura-sampang
Contact:

Re: [ASK] HTTPS SQUID

Postby sipelaut » 06 Jun 2012, 22:08

tidak bisa... keknya
https tidak bisa dicache sama squid
klo bisa dicache username sama password pesbuk bisa diliat dongg
CMIIW
User avatar
yudiarbi
Posts: 627
Joined: 22 Mar 2011, 09:31
Location: Probolinggo, Jawa Timur
Contact:

Re: [ASK] HTTPS SQUID

Postby yudiarbi » 07 Jun 2012, 02:47

SSL port di aktifin di squid
User avatar
dhannyharakiri
Posts: 6
Joined: 07 Apr 2011, 11:58
Location: Marabahan
Contact:

Re: [ASK] HTTPS SQUID

Postby dhannyharakiri » 07 Jun 2012, 08:24

sipelaut wrote:tidak bisa... keknya
https tidak bisa dicache sama squid
klo bisa dicache username sama password pesbuk bisa diliat dongg
CMIIW

yah, tapikan skrang banyak yang pake HTTPS. kalo masalah password bisa dilihat , kayaknya nggak deh, soalnya disini jarang ada advance user

yudiarbi wrote:SSL port di aktifin di squid

gimana kang cara aktifinnya, bisa di sebutkan langkah"nya? masih newbie nih.
User avatar
yamadipati
Posts: 43
Joined: 20 Dec 2011, 23:42
Location: /dev/null

Re: [ASK] HTTPS SQUID

Postby yamadipati » 13 Jun 2012, 21:16

Tidak bisa, squid di desain untuk port 80. menurut wikipedia

Web filtering proxies are not able to peer inside secure sockets HTTP transactions, assuming the chain-of-trust of SSL/TLS has not been tampered with. As a result, users wanting to bypass web filtering will typically search the internet for an open and anonymous HTTPS transparent proxy. They will then program their browser to proxy all requests through the web filter to this anonymous proxy. Those requests will be encrypted with https. The web filter cannot distinguish these transactions from, say, a legitimate access to a financial website. Thus, content filters are only effective against unsophisticated users.

As mentioned above, the SSL/TLS chain-of-trust does rely on trusted root certificate authorities; in a workplace setting where the client is managed by the organization, trust might be granted to a root certificate whose private key is known to the proxy. Concretely, a root certificate generated by the proxy is installed into the browser CA list by IT staff. In such scenarios, proxy analysis of the contents of a SSL/TLS transaction becomes possible. The proxy is effectively operating a man-in-the-middle attack, allowed by the client's trust of a root certificate the proxy owns.
Last edited by yamadipati on 27 Feb 2016, 20:28, edited 1 time in total.
Reason: code as quote
User avatar
yudiarbi
Posts: 627
Joined: 22 Mar 2011, 09:31
Location: Probolinggo, Jawa Timur
Contact:

Re: [ASK] HTTPS SQUID

Postby yudiarbi » 16 Jun 2012, 09:49

tp aq kok bisa ya di systemq?apa pemahamnq yg salah yah?coba digelar squid.confnya

Return to “Ubuntu Server”

Who is online

Users browsing this forum: No registered users and 7 guests