SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264
0000196: HTTPS bypasses content filter domain block list - MantisBT
MantisBT - Endian Firewall
View Issue Details
Application Level Proxies
Fixed in Version
0000196: HTTPS bypasses content filter domain block list
I'm trying to block access to web proxies setup by peacefire.org. Unfortunately, users can use https:// to bypass the content filter entirely. If a domain name / ip address is in the blocklist and is transmitted over the network in cleartext, why is it still bypassing the content filter?
The only solution I've found is to disallow port 443 on the "Allow SSL Ports" under the proxy configuration; however, that has a number other more-annoying side effects. Any idea why?