On 11/08/14 20:08, Antony Stone wrote: > Security between the client and the proxy, without security between > the proxy and the web server? Why? Well for one thing, it could be used as an "application vpn": ie allow your company devices to have all their web surfing via the corporate proxy server, which does AV and content-filtering. Certainly more secure than going direct from random hotels, coffee shops, etc. I can certainly attest that most malware issues we see are occurring when computers are *not* on the corporate network: ie they get infected at home, via raw Internet surfing. Unfortunately, as far as I'm aware, the only browser that supports proxy connections over SSL is Chrome/Chromium. Firefox *almost* is ready to support it - but not yet -- Cheers Jason Haar Corporate Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
