Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PFsense 2.2.2 connect login http://*****.lk

    Scheduled Pinned Locked Moved Cache/Proxy
    7 Posts 2 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      damithudayangakumara
      last edited by

      there is one remote site use https and http. site have a login validation.when use https to login it's works but http cann't login.. how to fix this

      (when i use dongle  both of to work )
      kkk.PNG
      kkk.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned
        last edited by

        Stop using Squid.
        Stop using plaintext to login (WTF!)

        1 Reply Last reply Reply Quote 0
        • D
          damithudayangakumara
          last edited by

          i want to use squid how to disable plaintext to login

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned
            last edited by

            Let me state this again: Your HTTPS login ONLY works because you have not yet managed to break it by the stupid proxy. If you want that site unusable, go ahead. And, you should never use HTTP sites to login to financial sites (banks, insurance…  :o ::)) When you connect to that site via http:// instead of https:// you are sending your username and password in clear text that everyone can see.

            1 Reply Last reply Reply Quote 0
            • D
              damithudayangakumara
              last edited by

              @doktornotor:

              Let me state this again: Your HTTPS login ONLY works because you have not yet managed to break it by the stupid proxy. If you want that site unusable, go ahead. And, you should never use HTTP sites to login anywhere.

              http://iwp.lk is a test server that i want to login to it.. https://iwp.lk is live sites….is there any solution allow paintext auth in squid

              1 Reply Last reply Reply Quote 0
              • D
                doktornotor Banned
                last edited by

                OMG. You really just have no clue… I was telling you that you should NOT use http:// (plaintext) for logins. There is no "allow paintext auth in squid" and that's NOT your problem either. Your problem is that the site is incompatible with your proxy. As soon as you manage to produce the stupid HTTPS/MITM filtering, you will NOT be able to login to that site at all. You do NOT want to proxy financial services sites, HTTP or HTTPS. It's just damn stupid and dangerous!!! Exclude that site from any proxying and move on.

                1 Reply Last reply Reply Quote 0
                • D
                  damithudayangakumara
                  last edited by

                  @doktornotor:

                  OMG. You really just have no clue… I was telling you that you should NOT use http:// (plaintext) for logins. There is no "allow paintext auth in squid" and that's NOT your problem either. Your problem is that the site is incompatible with your proxy. As soon as you have managed to produce the stupid HTTPS/MITM filtering, you will NOT be able to login to that site at all. You do NOT want to proxy financial services sites, HTTP or HTTPS. It's just damn stupid and dangerous!!! Exclude that site from any proxying and move on.

                  but it work on pfsense 2.1.5

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.