SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0000749: http proxy and ssl - MantisBT Endian Bugtracker
Endian Issue Tracker





Please see now our new Bugtracker system: JIRA








View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0000749Endian FirewallOther Servicespublic2008-05-03 12:012010-09-24 09:27
Reporterschwable 
Assigned To 
PrioritynormalSeverityfeatureReproducibilityalways
StatusacknowledgedResolutionopen 
PlatformOSOS Version
Product Version2.2-beta4 
Target VersionFixed in Version 
Summary0000749: http proxy and ssl
DescriptionIs there any chance that the http-proxy scans https ? (I know not havp). Because Gibraltar and Gateprotect can scan https.
It´s a great security risk
TagsNo tags attached.
Attached Files

- Relationships
has duplicate 0001169acknowledged Web proxy antivirus not work on SSL https protocol 

-  Notes
(0001115)
clubbing80s (reporter)
2008-05-05 13:21

In what context is do you consider it a threat .. As the decrupting of ssl data exposes secure information. Or viruses etc can get by via ssl ?
(0001117)
schwable (reporter)
2008-05-05 15:55

About viruses
(0001118)
peter-endian (administrator)
2008-05-05 16:56

decrypting the ssl tunnel on the firewall in fact is a man in the middle attack, since the firewall needs to accept every server certificate, without showing or asking the user.

Doing this enables everyone to do also a man in the middle attack without the possibility to recognize it by either end.

I think having the possibility to do a man in the middle attack is a much higher security risk.
(0001120)
schwable (reporter)
2008-05-05 17:34

when you surf in the internet there are many sites, they have https-sites but with self designed certifacates. They can easily import a virus in their sites. Look at https://secure.eicar.org/eicar.com [^]
(0001169)
schwable (reporter)
2008-05-14 16:24

when everybody program a switch todo allow accept every certificate and its scanned for virus ?

- Issue History
Date Modified Username Field Change
2008-05-03 12:01 schwable New Issue
2008-05-05 13:21 clubbing80s Note Added: 0001115
2008-05-05 15:55 schwable Note Added: 0001117
2008-05-05 16:56 peter-endian Note Added: 0001118
2008-05-05 17:34 schwable Note Added: 0001120
2008-05-14 13:52 simon-endian Status new => feedback
2008-05-14 16:24 schwable Note Added: 0001169
2009-10-21 16:40 peter-endian Relationship added has duplicate 0001169
2010-09-24 09:27 peter-endian Status feedback => acknowledged

Copyright © 2005-2008 Endian, SRL. All rights reserved.


Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker