If your wondering why a SSL proxy (Secure socket layer proxy) is said to be "harder to block". It is becuase the data between your computer and the proxy is encrypted with a cipher  of 128 or 256 Encryption. This is the same encryption banking type  and shopping websites use. You may notice on those sites https:// as the urls instead of http://.  With http:// connections the data is sent as plain text. Including the http headers which make it easy to ease drop on. While the https is not, and thats where we can begin to understand why a ssl proxy site can be difficult to block.

 

What are HTTP headers, and why do filters need them?

In a normal connection when you view a website there is a part in the header called the HOST:. In a ssl connection the HOST part is not avialable (As its encrypted). The entire data is wrapped in this encryption. So the filter cannot block the website since it cannot read the HOST: part of the header.

So for example say you were view www.*badwebsite*.com you would send and recieve requests with 

GET: /
HOST: www.google.com

The filter will examine on each request the HOST: header line and see whether this domain is allowed or not to be viewed. But for the SSL encrypted connections the HOST is not there! So this method of blocking is not possible by web filters that rely on the HOST header to block by domain names. Also Secure connections use Port 443, not port 80 so the connection may not even be being forced threw the filter, but rather going straight off port 443 without the filter even trying to snoop on it. This why SSL will just slip threw most web filters.

Next is real time filters that examine the webpage for "bad words" and block the page. The same thing applies. The HTML page will also be encrypted and cannot be read.

 

What is this HOST: for anyways?

The HOST: part is used by the websites hosting server to determine what website you want on the server, its common for most sites to use virtual hosts, which is a fancy way of saying this IP address has more then one website on it. Without the host header the server will not know what website you wanted from the IP address. Usually in those situations the server will send a bad request page or a page saying something about Cpanel or Plesk with an Apache logo if you didn't send a valid host request.

Example:

 

What is a good free ssl proxy that works with Youtube and Facebook?

We have tried out quite a few proxy sites and Freesslproxy.com seems to the best of them all. On Facebook we could actually post messages with the Ajax with everything seemingly  working (In Firefox 3). It also works with break.com, Youtube, and to login to Myspace.

 

This article © Hidefinder.com 2009. DO NOT COPY.

Articles

Update

I've noticed url.php file sometimes getting slow on this site, simply can't have that! I've fixed this by enabled memcached into the redirect url.php file.  So if

Welcome to the New Hidefinder

Do you Smell that? Its that new website smell you have been waiting for! Just joking, the owner of hidefinder, has been busy these past nearly 2 weeks,  designing and programming the ne

How to put ads in proxified page for CGI proxy script

When you open the CGIProxy script with notepad you may become overwhelmed at the sheer about code in it. That can be a problem if you are trying to figure out how to put avertisemen

What is cgi proxy?

CGIProxy is a script that acts as a HTTP or FTP proxy. It was created to help people over come censorship of information and to surf anonymously online. By installing it on a server, it can

What is Glype Proxy?

Glype is a proxy script that had its first release beta in may 2007. Glype may of been created to replace the unsupported PHProxy script although its not certain of the moti

From the directory