One thing is to use a proxy for HTTP wich is ok, another one is use a proxy for HTTPS - nobody in their right mind would do that.
Of course that if the login procedure is not in HTTPS that is a design problem and not a proxy / user problem. On Wed, 2002-12-18 at 18:03, Jason Jaszewski wrote: > Say I want to surf the web using anonymous proxy servers around the web. I > have encountered several Windows apps that will bounce traffic to different > proxy servers around the Internet. I understand how this works, however, I > am wondering about the security of it. Say a user wants to authenticate with > web mail, such as hotmail. When he or she authenticates with hotmail, that > traffic would also pass through the anonymous proxy servers. I assume this > can/does lead to someone getting password and username information from the > data that goes through the proxy server, in a way using a proxy server to > collect this sort of information from consumers who don't know any better, > but were informed by someone that this "anonymizes" Internet surfing. Just > how good are these anonymous web surfing applications/services in this > respect? I am asking from the standpoint of using this to add another level > of security to an otherwise tight system. > > Thanks, > Jason -- Atentamente, Nuno Branco MARKDATA Rua Padre Luis Aparicio, 10 - 5� 1150-248 Lisboa - PORTUGAL Telefone: +351 213173400 Fax: +351 213155046 http://www.markdata.net/
signature.asc
Description: This is a digitally signed message part
