How to bypass https mitm filtering or to bypass filtering altogether to some sites?

[jetsyste...@gmail.com]

I have e2guardian with mitm enabled and working nicely.

But some sites does not like to be filtered with mitm.

How can I bypass mitm filtering for those sites?

For example logmeinrescue does not like to be filtered.

If there is no way to bypass mitm filtering, maybe there is a way to bypass filtering all together for some sites, and let them go directly to the proxy/squid.

[Renato C. Pacheco]

I believe it is just to put your domain that you want in exceptionsitelist. I have to put youtube.com, for instance, to filter in MITM. In specific times, youtube.com is bypassed in exceptionsitelist that I made and no longer pass in the MITM filter. Try it!

--
You received this message because you are subscribed to the Google Groups "e2guardian" group.
To unsubscribe from this group and stop receiving emails from it, send an email to e2guardian+...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

--

Renato Carneiro Pacheco
Pós-Graduado em Segurança em Redes de Computadores
Graduado em Redes de Comunicação

http://br.linkedin.com/pub/renato-pacheco/9/b1/5a8
https://www.facebook.com/renatocarneirop

[jetsyste...@gmail.com]

Actually, I did tried. I had the site in the exceptionsitelist but still the site failed to connect.

In my case to work around the problem I had to create a proxy.pac file where I tell the browsers to send the problematic site to the squid directly and thus bypass the e2g filters.

[Renato C. Pacheco]

If site fails, means that was blocked or it had some MITM problem. Did you look at your logs about this issue?

[jetsyste...@gmail.com]

Yes. I looked on the logs but it does not show any error in the log. I created another discussion about the logs not showing all blocks.

It seems placing it in the exceptionsitelist is not enough to disable mitm processing.

In this regard I think the problem is not e2g but the site itself that does not like to be mitm and aborts when it detects is being mitm.

[Renato C. Pacheco]

Hum... IMHO, I guess that is certification problem. Try testing other sites in greyssllist if you can access successfully. Try to certificate if your CA was imported in your browser and when access these MITM sites that you chose, look at lock icon if appear your CA name.

Sorry if I was little bit confuse.