I'm searching for a method [on client side] to redirect to HTTPS in a few given domains.
e.g.:
to
Ok. I use several webbrowsers, and not all of them has "add-ons" to redirect these pages to https.
My purpose is this: when i go to "http://www.facebook.com" i don't want to see any http traffic with wireshark
Is this possible?? How can i achieve it? How can i automatically redirect http traffic for given domain names to HTTPS??
is it enough to redirect http? I mean then the webserver [e.g.: www.facebook.com] recognizes that i want to "talk" over HTTPS?
I has a caching-nameserver on my pc - BIND
I have an "ad blocking" proxy on my pc - PRIVOXY
And my pc is a "linux box" - IPTABLES [iptables only knows ip addresses?]
On Thu, Mar 03, 2011 at 05:03:53 -0800, erikmccaskey64 erikmccaskey64@zoho.com wrote:
I'm searching for a method [on client side] to redirect to HTTPS in a few given domains.
Ok. I use several webbrowsers, and not all of them has "add-ons" to redirect these pages to https.
The simplest answer is probably to use firefox most of the time with the htttps everywhere plugin. And when you need to use other browsers, use https manually.
Is this possible?? How can i achieve it? How can i automatically redirect http traffic for given domain names to HTTPS??
You could probably do this with an outbound proxy, but I don't know that getting the fallback feature of https everywhere to work will be easy. Probably sites that don't provide https alternatives will just fail. I am not sure which proxy server would be the easiest to use for this.
On Thu, Mar 3, 2011 at 7:17 AM, Bruno Wolff III bruno@wolff.to wrote:
On Thu, Mar 03, 2011 at 05:03:53 -0800, erikmccaskey64 erikmccaskey64@zoho.com wrote:
I'm searching for a method [on client side] to redirect to HTTPS in a few given domains.
Ok. I use several webbrowsers, and not all of them has "add-ons" to redirect these pages to https.
The simplest answer is probably to use firefox most of the time with the htttps everywhere plugin. And when you need to use other browsers, use https manually.
Chrome will accomplish the redirect without a plugin IIRC ...
regards/vaden@texoma.net
On Thu, Mar 3, 2011 at 8:35 AM, Larry Vaden vaden@texoma.net wrote:
On Thu, Mar 3, 2011 at 7:17 AM, Bruno Wolff III bruno@wolff.to wrote:
On Thu, Mar 03, 2011 at 05:03:53 -0800, erikmccaskey64 erikmccaskey64@zoho.com wrote:
I'm searching for a method [on client side] to redirect to HTTPS in a few given domains.
Ok. I use several webbrowsers, and not all of them has "add-ons" to redirect these pages to https.
The simplest answer is probably to use firefox most of the time with the htttps everywhere plugin. And when you need to use other browsers, use https manually.
This has been known NOT to work with Facebook. Fortunately, there is a setting on Facebook where you can request all pages be processed through https. See the Facebook How-To and FAQ on the steps needed to 'make this happen'.
James McKenzie
On Thu, Mar 03, 2011 at 09:53:47 -0700, James McKenzie jjmckenzie51@gmail.com wrote:
This has been known NOT to work with Facebook. Fortunately, there is a setting on Facebook where you can request all pages be processed through https. See the Facebook How-To and FAQ on the steps needed to 'make this happen'.
Note that that feature doesn't work as well is one might think. Some games and applications don't support https and when connecting with some devices you also don't get https.
On Thu, Mar 3, 2011 at 10:02 AM, Bruno Wolff III bruno@wolff.to wrote:
On Thu, Mar 03, 2011 at 09:53:47 -0700, James McKenzie jjmckenzie51@gmail.com wrote:
This has been known NOT to work with Facebook. Fortunately, there is a setting on Facebook where you can request all pages be processed through https. See the Facebook How-To and FAQ on the steps needed to 'make this happen'.
Note that that feature doesn't work as well is one might think. Some games and applications don't support https and when connecting with some devices you also don't get https.
Bruno:
Yes, and a recent discussion on the failure of Facebook and other sites to support https led to my discovery of this 'feature' provided by Facebook after being advised of its existance. This is the ONLY way to ensure that your Facebook adventures are secured from 'prying' eyes. You page visits and such are still recorded for statistical purposes per the EULA with Facebook while browsing on the site.
James McKenzie
-
Bruno Wolff III -
erikmccaskey64 -
James McKenzie -
Larry Vaden