Squid 3.4.x for with transparent ssl proxying/support for Debian Wheezy.

I needed  a variant of Squid which supported transparent SSL interception (i.e via iptables redirection) so I could log outgoing HTTPS requests without the client being aware.

The stock wheezy variant doesn’t support SSL (see : Debian Bug Report).

Even after recompiling Wheezy’s squid3 it didn’t seem to work (perhaps my stupidity) so I ended up moving to the latest-and-greatest squid (3.4.9 at the time of writing) and getting that to work. Brief notes follow.

Continue reading “Squid 3.4.x for with transparent ssl proxying/support for Debian Wheezy.”

BeThere to Sky Broadband

Given BT have finally updated our street cabinet to support FTTC, my home broadband will soon hopefully be moving form BeThere to Sky. The monthly cost remains roughly the same, but I move from about 8mbit to 40mb. I hope.

Except, Sky own BeThere. So perhaps I’m not really moving – but this didn’t stop BeThere sending me emails and texts (“We’re sorry to hear you’re leaving” etc).

Anyway, while signing up for Sky and talking to their minion on the phone ……

Sky minion: “So, we need to take some details from you for security purposes … what’s your mother’s maiden name? …. What’s your postcode? …… Choose a password ? “.

Five minutes later, when I had to ring Sky back to give them a MAC code I’d written down from talking to a BeThere minion :

Sky minion: “What’s your password sir?”

Me: xxxxxxxx

Sky minion: “That’s not what we have here, what’s your mother’s maiden name?”

Me: xxxxxxxx

Sky minion: “OK, Thanks. I’ll update your password to xxxxxxxxx”.

Hmm.

EE Broadband box

On a random mailing list there’s a report of an EE broadband box being delivered with a QR sticker on the side.

eebox with stupid qr code
eebox with stupid qr code

Which when scanned gives something like :

SN:J32xxxxxxx;MAC:88-03-55-xx-xx-xx;USER:admin;Pass:xxxxxx;SSID:EE-BrightBox-xxxxxx;WPA:xxx-xxxx-xxxxx

Guess that makes it handy for the postman to use your broadband.