Beta Config (Sep 19 2010)

[JJoe]

(Oct. 01, 2010 11:52 AM)wammie Wrote:  For the time being though, I think Sidki ought to consider this discussion and make a decision about turning these SSL filters off or on for the default out of the box configuration. Like I've indicated, some of the SSL filters were TRUE in the default beta installation.

The user must add the DLLs to filter SSL. If the DLLs are present, the user has probably already made a decision to filter. If the DLLs are not present, the user may learn more about the Proxomitron's abilities.
Some of the SSL related filters are TRUE but I believe those filters are disabled by a variable by default.
IOW, the user must choose to filter SSL.

So should you filter all secure pages?
From the Proxomitron's readme.txt

SRL Wrote:** WARNING **

This mode is experimental! I would strongly discourage using active
SSL filtering for important transactions such as on-line banking or purchases.
The connection may not be as secure, and it's better not to risk a filter
potentially creating troubles on such a page. However, since the casual use
of SSL on less important pages is increasing, sometimes you may wish to
filter it anyway. Still, keep in mind that you do so at your own risk.

To use this mode Proxomitron must have access to "slleay32.dll" and
"libeay32.dll" which contain all the SSL libraries and all cryptographic
routines. Otherwise "Pass-Thru" mode will be used.

Because of all the legal and patent problems involved in the USA
with any program that uses encryption, Proxomitron comes with NO
ENCRYPTION CODE WHATSOEVER. In order to filter SSL connection
you must get a copy of two additional files - "slleay32.dll" and
"libeay32.dll".

In addition, I have since been told that there is at least one secure "job-related" site that forbids or discourages the use of things like the Proxomitron.

So if you must, you should know what you and the Proxomitron are doing.



@ProxRocks
Are you telling every user to filter everything? Or are you saying "If you must..."

(Oct. 01, 2010 08:14 AM)ProxRocks Wrote:  for ME, filtering SSL has become quite the GODSEND...
for the "secure" sites that i frequent

In the six to seven YEARS that you have (Don't you block scripts by default?), have you experienced everything?
Can you guarantee that nothing bad will happen due to the use of the Proxomitron?
Who will suffer the consequences of the misuse?