HTTPS redirects to HTTP for monitoring

Grant Ridder shortdudey123 at gmail.com
Sun Jan 18 12:29:56 UTC 2015


Hi Everyone,

I wanted to see what opinions and thoughts were out there.  What software,
appliances, or services are being used to monitor web traffic for
"inappropriate" content on the SSL side of things?  personal use?
enterprise enterprise?

It looks like Websense might do decryption (
http://community.websense.com/forums/t/3146.aspx) while Covenant Eyes does
some sort of session hijack to redirect to non-ssl (atleast for Google) (
https://twitter.com/CovenantEyes/status/451382865914105856).

Thoughts on having a product that decrypts SSL traffic internally vs one
that doesn't allow SSL to start with?

-Grant



More information about the NANOG mailing list