Wednesday, 24 September 2014

Google: Disable SSL for Google Search

<< Why you need to disable SSL >>
Searching over Secure Sockets Layer (SSL) provides you with a more secure and private search experience. You can tell that you’re searching on SSL when you see https in your URL (note the “s” in “https”, meaning secure).

When searching over SSL, the connection between the user and Google is encrypted. Because the connection is encrypted, the query rewriting techniques described below will not work unless you disable SSL search.

Blocking https://www.google.com may prevent your organization from accessing many Google products. Instead, use the steps below to enforce SafeSearch.


<< How to disable SSL Search >>
To disable SSL search for your network, configure the DNS entry for www.google.com (or any other Google country domains your users may use) to be a CNAME for nosslsearch.google.com or A Record for 216.239.32.20.

We will not serve SSL search results for requests that we receive on this virtual IP address (VIP). If we receive a search request over port 443, the certificate handshake will complete successfully, but we will then redirect the user to a non-SSL search experience. The first time a user is redirected, they will be shown a notice that SSL has been disabled by the network administrator.

Utilizing the NoSSLSearch VIP will not affect other Google services outside of Search. Logging into Google Apps and authenticating to different services will continue to work (and will occur over SSL).


Reference:
Block adult content at your school with SafeSearch
https://support.google.com/websearch/answer/186669?hl=en

No comments:

Post a Comment