proxy authentication SSL-encrypted

Astaro Security Gateway Feature Requests Forum

Sign in
Enter your email address Sign in to your profile. Forgot password?

Email me a new password. …or, sign in with

Powered by Janrain Previously signed in with one of these?

Sign in
Email

Name

Password

Sign in
I agree to the Terms of Service Remember me

Close

Close

« return to Astaro Security Gateway Feature Requests Forum

33 votes

Powered by Janrain Previously signed in with one of these?
Sign in

Email

Remember me

You have 20 votes remaining

1 vote
2 votes
3 votes

proxy authentication SSL-encrypted

Please make the proxy authentication encrypted if the client does not support eDirectory SSO. Actually user and password are sent in human-readable cleartext.

Same thing for the transparent proxy with authentication. The login form is provided via http... Why not https?

Comments

Powered by Janrain Previously signed in with one of these?
Sign in

Email

Remember me

Your Comment

2

Sindbad Sailor

pimp up the captive portal

6 months ago
3

Ken Watts

A non-encrypted proxy authentication is clearly unacceptable by any security standard. It looks like the eDirectory SSO could fallback to the transparent proxy auth page, rather than using basic http auth. The proxy auth page also needs to be SSL encypted using a generated cert signed by a client trusted CA.

7 months ago
Stefan Baumgart

An alternatice mechanism was the support of digest authentication. Its not as secure as SSL but it is a first step.

7 months ago
2

Sindbad Sailor

yes we can - encrypt everything

10 months ago
1

Eric Severance

I'd like it if all HTTP/S proxy traffic were encrypted. It'd be just one more layer of defense for a wireless network.

10 months ago
3

Andreas Kronawitter

Cleartext Password are very secure, isn't it ?
I wish a https splace screen to auth. proxy.

10 months ago

powered by UserVoice

Astaro Security Gateway Feature Requests Forum

proxy authentication SSL-encrypted

20 votes left!