Forums
| BadPhorm - When good ISPs go bad! :: Forums :: Tips & Breaking News :: Tips |
|
<< Previous thread | Next thread >> |
| Insider view of Phorm's sales pitch | ||
|
Moderators: Jim Murray, narcosis, felixcatuk, Sammy
|
| Author | Post | ||
| Oblonsky |
| ||
 Registered Member #132 Joined: Sat Mar 08 2008, 10:59AMPosts: 65 | very interesting post here on slashdot from someone claiming to have seen Phorm's sales pitch. Frightening... | ||
| Back to top | | ||
| BadPhormula |
| ||
 Registered Member #188 Joined: Sun Mar 16 2008, 05:00PMPosts: 7 | Oblonsky wrote ... very interesting post here on slashdot from someone claiming to have seen Phorm's sales pitch. Frightening... Of course people will shout "paranoia" when they read that Slashdot contributers analysis of what the Phorm system may be capable of doing (at some point in the future / or now). The writer raises some interesting technical points about browser hijacking technology methods. [from Slashdot article:] "Now, at this point, the über-technically adept point out encryption, certificates, Man-in-the-Middle attacks and the like. True, https sessions, encrypted IM, TLS protected POP&IMAP and other protected protocols give some protection from snooping on the content, but not much "signals analysis" protection. They can still snoop on your DNS traffic, even if you run your own local caching server or use OpenDNS or AlterDNS. They can still see what the end points of your encrypted tunnels are. Sure, you could tunnel all your traffic to a remote VPN server, but how many of you do that now? How many average users would even bother? " [end:] The DNS attack can be fixed by changing which end of the proxy does the DNS lookup on a squid fed proxy system. This is a feature supported by Firefox and can be implemented by changing a boolean flag "network.proxy.socks_remote_dns = true" in about:config. Here is an article for the paranoid techies amongst you that fixes DNS leaks. "paranoid browsing with squid" URL: http://outflux.net/blog/archives/2006/12/07/paranoid-browsing-with-squid/ [ Edited Tue Mar 18 2008, 09:36AM ] | ||
| Back to top | | ||
Powered by e107 Forum System