On Thu, Jul 11, 2002 at 01:19:26AM -0700, rohit sharma wrote: > but why is it in linux all the http tunnel like > programs either need ssl/ssh support on the server or > need to have a server running outside the > firewall(like in home which further fwd our requests)
It's OS independent. It's proxy dependent, and of its configuration. > there are programs in windows like socks2http which > can simply tunnel the tcp ip requests as http and let > it pass through the squid. don't we have any without > the ssl support i tried installing dante but the > forwarding clients are not free. Proxies servers don't magically transform HTTP requests into TCP/IP packets. The proxy must allow CONNECT to any port in order to socks2http or any similar program to work. > as someone also asked -> how can we disallow this. Proper acl rules on proxy server. As of squid: acl CONNECT method CONNECT acl SSL_ports port 443 563 http_access deny CONNECT !SSL_ports Regards, Luciano Rocha -- Consciousness: that annoying time between naps.
