This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Transparent vs Explicitly Defined Proxy

With Transparent proxy, I understand that the client definitely needs SSL bump in order for Decrypt and Scan web filtering.

Does the client need SSL Bump if I define the proxy explicitly in the client internet settings? An IT consultant is telling me SSL bump is an un-needed security risk.

Thanks,

Greg

This thread was automatically locked due to age.

Parents

0 gzartman over 11 years ago

"SSL Bump" is the term I've heard thrown around is the different web content scanning developer circles to indicate decryption and scanning of the SSL data stream.

What you are saying makes perfect sense. The developer I was talking to told me that installing the CA is not necessary to scanning the SSL datastream. He felt that the explicitly defining the proxy in the client would allow the proxy to decrypt the stream without the need to install the CA.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 gzartman over 11 years ago

"SSL Bump" is the term I've heard thrown around is the different web content scanning developer circles to indicate decryption and scanning of the SSL data stream.

What you are saying makes perfect sense. The developer I was talking to told me that installing the CA is not necessary to scanning the SSL datastream. He felt that the explicitly defining the proxy in the client would allow the proxy to decrypt the stream without the need to install the CA.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data