Closed GoogleCodeExporter closed 8 years ago
Why do you want SSH tunnel to support SSL proxy? You already have a secure
tunnel set up - all you get is encrypting the traffic between the application
and the local tunnel.
Is it a security issue (other local applications may be sniffing my local
traffic) or have you confused what the difference between an SSH tunnel and a
proxy is?
Original comment by anders.k...@gmail.com
on 10 Jul 2012 at 7:03
The web traffic to the proxy server occurs intermittently (especially if you
filter the traffic with a pac file), while the SSH tunnel has to be maintained
at all the time.
With a https proxy, the SSL tunnel is created only one request before the web
traffic (http/https). The http/https traffic travels inside the SSL packet.
On a mobile device, the second approach may be more desirable.
Original comment by peter.k....@gmail.com
on 10 Jul 2012 at 7:18
Original comment by max.c...@gmail.com
on 14 Aug 2012 at 2:07
Just want to add another word.
I just noticed that SSHTunnel supports a remote Socks proxy (as opposed to the
local Socks proxy opened by ssh).
According to the feedbacks, how often does the connection get RST by GFW? I
guess it is a real issue, as I see there are some people working on projects
that encrypt the Socks traffic, e.g. https://github.com/clowwindy/shadowsocks .
The idea of my original proposal is probably better complained in the last
section of the following webpage, http://wiki.squid-cache.org/Features/HTTPS
It is possible to encrypte the plain-text http traffic to the proxy server.
There are several implementation on the server side, but there is still lacking
one for the Android client.
Original comment by peter.k....@gmail.com
on 13 Oct 2012 at 5:59
Original issue reported on code.google.com by
peter.k....@gmail.com
on 6 Jul 2012 at 6:29