Thread: Application Throttling/Management
View Single Post
Old 05-09-2008, 18:25   #289
popper
Inactive
 
Join Date: Jan 2006
Posts: 3,270
popper has a bronze arraypopper has a bronze arraypopper has a bronze array
popper has a bronze arraypopper has a bronze arraypopper has a bronze arraypopper has a bronze arraypopper has a bronze arraypopper has a bronze array
Re: Application Throttling/Management
Quote:
Quote:
Originally Posted by dev
an ISP can easilly see SSL traffic, afterall you negotiate the secure connection via your ISP
Quote:
Originally Posted by Toto View Post
I was answering the point as to whether or not D(eep)P(acket)I(nspection) of SSL packets was legal or not, not whether the ISP can see them, which of course they can.
Deep Packet Inspection/Interception of a UK/EU/US consumers Unique datastream IS NOT legal, UNLESS they have been given written full and informed consent by the owner of that data stream, I.E YOU as the owner and maker of that unique datastream.

You as the owner and maker of that data can remove any of the rights you may have given them at any time with a simple "official notice" in writing to the data controller of the company involved removing that right.

(as the phorm/NebuAd cases are showing and educating the worlds Broadband masses today).

---------- Post added at 18:25 ---------- Previous post was at 18:05 ----------

Quote:
Originally Posted by Broadbandings View Post
Not really, this is why there are certification chains for the SSL certificates. If Virgin started trying to proxy SSL connections in order to read the contents it would be very obvious when you noted your bank's secure site having a certificate signed by Virgin Media

They can't 'break' SSL but can certainly monitor the endpoints and implement a policy based on that. If someone has 10 SSL connections to news-europe.giganews.com it doesn't take a huge amount of thinking or analysis to guess what the traffic is.
this is so true, thats why theres such a massive potential for some Uk 3rd party Co-location site to set up a basic free tunneling service to their servers and charge a reasonable price for higher data packages.

if only someone would provide this simple free basic service ASAP (google Uk infrastructure perhaps?) for your average users that dont know how to get or setup their own SSL tunneled Co-location Virtual web servers and related apps for personal remote use.

that way you tunnel from your VM/BT master home machine pluged into your desk BB modem directly to the free 3rd party virtual web server, and run your real datatreams end point from that 3rd party location,and hence VM/BT etc cant easly see these unencypted data end point requests, lets see VM/BT justify STMing that single SSL data pipe to a 3rd party in court.

OC as time moves on, its looking far more viable to look into direct WiMax and wireless gigE to the Co-Location sites around the country and bypass the ISPs invasive snooping all together.

as the Wimax/GigE hardware prices fall through the floor for this old/new wireless kit, all it takes today is a few mates or a small village to club together and run their own cheap Meshed wifi and a single server housed somewere handy to all of them with this wireless WiMax/GigE connection pointing to your friendy Co-Location site and you can do that today, never mind the url story below that will make it even easyer and cheaper later.

http://www.dailywireless.org/2008/09/04/gigabit-wi-fi/

http://www.dailywireless.org/2008/08...most-as-cheap/
popper is offline   Reply With Quote