<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<br>
-----BEGIN PGP SIGNED MESSAGE----- <br>
Hash: SHA1 <br>
<br>
Sure. :)<br>
<br>
This way:<br>
<br>
<a class="moz-txt-link-freetext" href="http://yvoinov.blogspot.com/2014/08/squid-tor-privoxy-transparent-dns.html">http://yvoinov.blogspot.com/2014/08/squid-tor-privoxy-transparent-dns.html</a><br>
<a class="moz-txt-link-freetext" href="http://yvoinov.blogspot.com/2014/08/squid-tor-privoxy-transparent-dns_19.html">http://yvoinov.blogspot.com/2014/08/squid-tor-privoxy-transparent-dns_19.html</a><br>
<br>
:)<br>
<br>
04.02.2015 2:44, Anton Radkevich пишет:<br>
<span style="white-space: pre;">><br>
> Yuri,<br>
><br>
> Can you please share any configuration examples? ;)<br>
><br>
> 03 февр. 2015 г. 23:27 пользователь "Yuri Voinov"
<<a class="moz-txt-link-abbreviated" href="mailto:yvoinov@gmail.com">yvoinov@gmail.com</a> <a class="moz-txt-link-rfc2396E" href="mailto:yvoinov@gmail.com"><mailto:yvoinov@gmail.com></a>>
написал:<br>
><br>
><br>
> Eliezer,<br>
><br>
> Squid can be cascaded with Privoxy+Tor. :)<br>
><br>
> And then - we can route users into it using ACL's.... ;)<br>
><br>
> Yep, not Squid itself. But with external services......... ;)<br>
><br>
> 04.02.2015 2:23, Eliezer Croitoru пишет:<br>
> > On 03/02/2015 17:14, Anton Radkevich wrote:<br>
> >> so just to be clear the connection flow will look
like:<br>
> >><br>
> >> browser <Encrypted Tunnel> Server <HTTP or
HTTPS connection> Destination<br>
> >><br>
> >> where <Encrypted Tunnel> is probably some form
of HTTPS connection for<br>
> >> support with the browser PAC<br>
><br>
> > Hey Anton,<br>
><br>
> > Squid do not support socks connection or any other form
of encryption.<br>
> > The known options to encrypt the connection between the
client and the<br>
> server are:<br>
> > - ssl vpn tunnel<br>
> > - ssh vpn tunnel<br>
> > - some other weird and special ways<br>
><br>
> > Since I am not familiar with all authentication methods
I cannot answer.<br>
> > On the other hand squid offers couple ways to
authenticate and I am<br>
> sure that the choice between md5 or other sha algorithm is
not important<br>
> if you are encrypting the connection between the server and
the client<br>
> using a tunnel.<br>
> > If you wish to use some higher security levels you can
use client side<br>
> certificates and pin IP addresses to the certificates.<br>
><br>
> > All The Bests,<br>
> > Eliezer<br>
><br>
> > _______________________________________________<br>
> > squid-users mailing list<br>
> > <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>
<a class="moz-txt-link-rfc2396E" href="mailto:squid-users@lists.squid-cache.org"><mailto:squid-users@lists.squid-cache.org></a><br>
> > <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
><br>
><br>
> _______________________________________________<br>
> squid-users mailing list<br>
> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>
<a class="moz-txt-link-rfc2396E" href="mailto:squid-users@lists.squid-cache.org"><mailto:squid-users@lists.squid-cache.org></a><br>
> <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a><br>
></span><br>
<br>
-----BEGIN PGP SIGNATURE-----
<br>
Version: GnuPG v2
<br>
<br>
iQEcBAEBAgAGBQJU0TnOAAoJENNXIZxhPexG0KoH/0oD2VHwxS0YrE9tb/lohY7h
<br>
1sTo6/j9iKuPY97wDjNxGKl3wcmHmNF0QTGK5z60i9oj2FmjE4wXCNv2MehNjlIc
<br>
gZc+RlQlTdFEzKk2wQAWgflNg5YWw8Q2y59ApF/nhj2rQVdA1J+pVSkY8cnRSDq+
<br>
zjua8ks98+8qJEGDdgCBXeTtTYyfr0L9T7tPIHi7AZdDUMWu26+mY+F7pQVB03sE
<br>
r2ebSXlzhUXW6lNmIOGufQdUin1unTSSyoHVpEHrXNaYZIEB8EUjrFsME9W4E7M5
<br>
wALBLprKU6ZbfMljuTnG44LfXHYMuKnSLwyKQ0nB020KAdNh3CVNpgDbYR8lEp4=
<br>
=tvcQ
<br>
-----END PGP SIGNATURE-----
<br>
<br>
</body>
</html>