Question about accessing logos secure servers with parental controls enabled

Page 1 of 1 (9 items)
This post has 8 Replies | 2 Followers

Posts 46
Jason York | Forum Activity | Posted: Mon, Dec 9 2013 3:36 PM

I have a question, the Mac that I use has restrictions enabled and specifically the blocking of https sites. This is great for ensuring no access to anything but safe websites with appropriate content. i think all guys should have filtered internet even if they have never had issues with the internet, but that's just my opinion. But, ever since I chose to block https I can no longer use logos 5 in regard the internet, ie logging in, updating, or even downloading paid for books. I still have a book I bought months ago that wont download even after disabling all parental controls, not sure what's happening there.

i believe the solution is to indiduly approve any and all https sites that are related to logos, logging in, updating, and downloading of purchased content. I have already done this successfully with various banking websites and other apps. 

Can I get a list of those https sites so that logos can work again on my computer?

Thanks

Posts 228
Stephen | Forum Activity | Replied: Mon, Dec 9 2013 5:18 PM

Why would you want to block https? the s is secure so any https site is a secure site. It use secure communication servers like your bank. If your worried about content blocking https isn't going to do much, just make more of  headache when your trying to purchase something off the internet.

have you tried adding https://logos.com?

Posts 46
Jason York | Forum Activity | Replied: Mon, Dec 9 2013 6:03 PM

blocking https is paramount,that's why it's A feature for parental control software, headache yes, but is does have a purpose. If you don't have it blocked any https site can be accessed regardless of what your filters are that are set up. In other words you could access https://google.com do an image search with zero filtering. Filtering would kick in if you try to click on a link to go to a specific website, but if hundreds of images show up, you could still say the filter is useless at that point. If you have ever tried to block it you would know that there are far more https sites associated with any given website or program than just https://"webaddress"

Thanks for your help, but it's much more complicated than adding https://logos.com

any specific feature on a website may have a different secure Address, that's why I need the address for each of the main features like downloading new books, logging in, updating etc

Posts 6730
Forum MVP
Lynden Williams | Forum Activity | Replied: Mon, Dec 9 2013 6:24 PM

Jason you better give Logos a call.

Lynden Williams Communications

Posts 8967
RIP
Matthew C Jones | Forum Activity | Replied: Mon, Dec 9 2013 6:27 PM

I'm still wondering why it would be advantageous to block an https site. Roll Eyes (excepting Facebook, of course)

Logos 7 Collectors Edition

Posts 9153
LogosEmployee

Jason York:

Can I get a list of those https sites so that logos can work again on my computer?

Does your blocking software support wildcards? You'll want to allow at least the following:

  • *.logos.com
  • *.logoscdn.com
  • s3.amazonaws.com/*.logos.com
  • logos-*.global.ssl.fastly.net

Those sites are required for functioning of sync and updates. There are other sites (e.g., accessed by the Passage Guide) that you might selectively choose to enable.

Alternatively, does it support whitelisting a specific process? If so, adding Logos.exe and LogosIndexer.exe would be a simple fix.

If no wildcards are supported, you could try installing an HTTP debugging proxy, running it, and writing down every single website Logos attempts to access while running. You could then add those one-by-one as exceptions. I've used Fiddler2 on Windows, and have heard that Charles (http://www.charlesproxy.com/) is a similar tool for Mac.

Posts 9153
LogosEmployee

Super.Tramp:

I'm still wondering why it would be advantageous to block an https site.

My guess: without intercepting and decrypting the traffic (which, unless you are a government agency Smile, typically results in a warning being displayed in the browser) third-party software can't even see which URL is being requested, let alone inspect the contents of the downloaded page. Thus, if the blocking software operates by scanning URLs or page contents for keywords, it can't function against HTTPS sites, so to prevent users circumventing the filtering by using a HTTPS site as a proxy, it needs to blacklist all HTTPS sites for maximum effectiveness (then whitelist known safe sites, such as logos.com, amazon.com, your bank, etc.).

Posts 9153
LogosEmployee

Bradley Grainger (Logos):

  • s3.amazonaws.com/*.logos.com

I just realised that this kind of wildcard isn't possible (without decrypting HTTPS traffic). You'll have to decide if you want to allow access to all S3 content (whether it comes from Logos or not) or block access to the direct download links on https://www.logos.com/installation. (Automatic updates from within the program, once you do download the initial installer, come from downloads.logoscdn.com and won't be affected by a block on s3.amazonaws.com.)

Posts 29918
Forum MVP
JT (alabama24) | Forum Activity | Replied: Mon, Dec 9 2013 7:43 PM

Jason - I appreciate your heart on this issue. I hope you find a good resolution. Please post back if you do. Someone really needs to come up with a GOOD system. There just isn't one that I am aware of.

macOS, iOS & iPadOS | Logs |  Install

Page 1 of 1 (9 items) | RSS