[177415] in North American Network Operators' Group
Re: HTTPS redirects to HTTP for monitoring
daemon@ATHENA.MIT.EDU (John Levine)
Sun Jan 18 13:15:40 2015
X-Original-To: nanog@nanog.org
Date: 18 Jan 2015 18:15:09 -0000
From: "John Levine" <johnl@iecc.com>
To: nanog@nanog.org
In-Reply-To: <54BBD015.3070001@jack.fr.eu.org>
Errors-To: nanog-bounces@nanog.org
>> So your idea is to block every HTTPS website?
>From my point of view, it is better than violate user privacy & safety.
>
>Sneaky is evil.
I expect your users would fire you when they found you'd blocked access to Google.
>>> These boxes that violate end to end encryption are a great place for
>>> hackers to steal the bank and identity info of everyone in your company.
Since the end user machines are generally running Windows, why would bad guys
waste time on a much harder and more obscure target?
