* Robert Relyea:
>>> I've seen proposals for this kind of gateway back in the early 90's as
>>> a way of providing secure email access for browsers which did not
>>> support https:.
>>>
>>
>> IIRC, Netscape 3 or 4 had some kind of "extend trust to proxies" option.
>>
> Not when it comes to
Florian Weimer wrote:
> * Robert Relyea:
>
>
>>> Oh, how unfortunate. Is it possible to disable all certificate checks?
>>>
>
>
>> So the question naturally arises: "why do you want this?".
>>
>
> I want to get rid of the HTTPS confirmation dialogs for testing
> automation purpos
* Robert Relyea:
>> Oh, how unfortunate. Is it possible to disable all certificate checks?
> So the question naturally arises: "why do you want this?".
I want to get rid of the HTTPS confirmation dialogs for testing
automation purposes, preferably without patching the source code. (The
latter
Nelson Bolyard wrote:
Robert Relyea wrote:
NOTE2: None of the proxy nelson mentioned will work if the user is using
SSL client auth.
I would say two things about that:
1) SSL client auth is generally controlled by the server, not the client.
correct. (of course).
2) There are re
Robert Relyea wrote:
> NOTE2: None of the proxy nelson mentioned will work if the user is using
> SSL client auth.
I would say two things about that:
1) SSL client auth is generally controlled by the server, not the client.
2) There are reverse proxy products that will do SSL client auth, IIRC.
Florian Weimer wrote:
* Nelson Bolyard:
Florian Weimer wrote, On 2007-12-07 02:54:
Is it possible to configure NSS (or, more precisely, Firefox) to
terminate SSL connections on the web proxy, so that the proxy receives
requests in the clear (and handles the certificate verification)?
* Nelson Bolyard:
> Florian Weimer wrote, On 2007-12-07 02:54:
>> Is it possible to configure NSS (or, more precisely, Firefox) to
>> terminate SSL connections on the web proxy, so that the proxy receives
>> requests in the clear (and handles the certificate verification)?
>
> I think, but am not
Bruce:
You may want to look at Paros. Its an open source proxy where you can
see the HTTPS traffic in plain text.
Best Regards.
Umesh.
- Original Message -
From: "Bruce Keats" <[EMAIL PROTECTED]>
To:
Sent: Monday, December 10, 2007 9:28 PM
Subject: Re: Terminatin
Bruce Keats wrote, On 2007-12-10 07:58:
> I was curious about the last scenario.
>
> 2. The Server Side Proxy (a.k.a., Reverse Proxy)
>
> Public Internet Intranet
> [browser]-[proxy]--[server]
> SSL plain
I was curious about the last scenario.
2. The Server Side Proxy (a.k.a., Reverse Proxy)
Public Internet Intranet
[browser]-[proxy]--[server]
SSL plain
In this case, does the proxy have to convert the URIs
Florian Weimer wrote, On 2007-12-07 02:54:
> Is it possible to configure NSS (or, more precisely, Firefox) to
> terminate SSL connections on the web proxy, so that the proxy receives
> requests in the clear (and handles the certificate verification)?
I think, but am not certain, that you're descri
Is it possible to configure NSS (or, more precisely, Firefox) to
terminate SSL connections on the web proxy, so that the proxy receives
requests in the clear (and handles the certificate verification)?
___
dev-tech-crypto mailing list
dev-tech-crypto@list
12 matches
Mail list logo
