OpenSSL & SSL Authentication Questions

[JJoe]

Welcome,

Use one of the two openssl files at http://proxomitron.info/files/index.html .
The patches sidki used and info are in the zip.
http://proxomitron.info/files/download/o...readme.txt

IIRC, OpenSSL 0.9.8a and later are incompatable with the Proxomitron. Some users of programs that were orphaned by the changes to OpenSSL considered creating software to bridge but no. The OpenSSL folks just might break it again. Advice was that any effort should be spent on new programs.

Quote:ProxHTTPSProxy? Will the slproweb Light packages suffice?

I'd choose the "Win32 OpenSSL v1.0.0L Light". However, I just noticed, I have run ProxHTTPSProxy without slproweb OpenSSL installed. I have python installed with pyOpenSSL-0.13.1.win32-py2.7 instead.

There are libraries that could extend ProxHTTPSProxy https abilities but I haven't been able to convince myself that that is the thing to do. A browser in http mode may not do things that it should do while the mitm proxy is handling the https connection and http://en.wikipedia.org/wiki/HTTP_Strict...t_Security and ??.

I know the current https scheme can fail but so can proxies, vpns, toothpaste, seatbelts, airplanes, parachutes, etc. Proper use and fingers crossed seems to be the best course.

I would like browsers that will always accept known friendly mitms. The browser could even have some cute icon display when using the mitm.


As to better security, privacy, etc...

My world has some people who believe they have the right or responsibility to be able to know what others are doing. Any solution has to get by these people.

Have fun