How to block Ultrasurf from squid?

[ra_sriniketan]

How to block Ultrasurf/Tor/http tunnel like softwares from squid?

 

[whitestar_999]

Re: [squid-users] BLock Http Tunnel from Federico Lombardo on 2003-02-12 (squid-users)

it seems that as long as any port is available for connect tunneling can be done through that port.cache browsing will not be available anymore.some suggest using a bandwidth/connect request monitoring(through logs etc) to directly find person/persons not following the rules & warn them thus eliminating the source of the problem itself.

 

[krishnandu.sarkar]

Well I'd also like to kniw about the chances of catching / identifying users of these type of applications. Aren't those encrypted?

Can it be monitored?

 

[whitestar_999]

if you really want to monitor https connections then i found this:
SQUID transparent SSL interception Dvas0004's Blog
i would advice though to fully understand its implications since i am not familiar with this setup but looks to me that this method can effectively make even confidential https connections(banking etc) exposed(to you/admins of network) or not work correctly.

another way is to use whitelist based https sites only(for blocking not monitoring like above):
*www.safesquid.com/html/portal.php?page=159