Comment 9 for bug 244448

'local authorization proxy' is NTLMaps - http://ntlmaps.sourceforge.net/ - it uses domain password to authenticate to parent proxy. One annoyance though is that it asks password every time, but at least it doesn't stored anywhere. It provides plain proxy interface for programs that doesn't support proxy authorization at all.

PyTTY is indeed PuTTY. It provides SOCKS server to tunnel requests over SSH connections. I believe bzr has similar bzr+ssh:// scheme, but it needs tunneling anyway through 80 or 443 port, because domain proxy bans connections on SSH port 22.

I haven't encountered content-filtering problems with bzr yet, because I've started to use it a couple days ago, but there were such problems with svn. Good svn has a detailed connection log to debug the problem, but it still took a long time to pinpoint the problem. If bzr uses plain HTTP requests with URLs that can contain words that can be filtered or request content can be matched by proxy filter then there are chances that at some point I will need to tunnel this connection too.