On Wed, Mar 22, 2000, Robert X Weeks wrote:
> In the notes of 2.6.2 it mentions that HTTPS proxying is now available. How do I
> implement this is it the same as an insecure proxy or are there new commands
> like SSLProxy on?
The same CHANGES entry you mention also included this:
| o SSLProxyProtocol [+-][SSLv2|SSLv3|TLSv1] ...
| (enable or disable SSL protocol flavors)
| o SSLProxyCipherSuite XXX:...:XXX
| (colon-delimited list of permitted SSL ciphers)
| o SSLProxyVerify on|off
| (whether to verify the remote certificate)
| o SSLProxyVerifyDepth N
| (maximum certificate verification depth)
| o SSLProxyCACertificateFile /path/to/file
| (file containing server certificates)
| o SSLProxyCACertificatePath /path/to/dir
| (directory containing server certificates)
| o SSLProxyMachineCertificateFile /path/to/file
| (file containing client certificates)
| o SSLProxyMachineCertificatePath /path/to/dir
| (directory containing client certificates)
> I have rebuilt apache with --enable-rule=SSL_EXPERIMENTAL --enable-module=proxy
> and started with a fresh httpd.file but he proxy information is commented out
> and I see no other proxy directive.
>
> Have I missed something? there is nothing in the FAQ.
The stuff is experimental and so it is still not documented. That's
why the FAQ also does not contain anything about it. The above short
overview and the source code is the only information available for such
an experimental feature.
But keep in mind that for simple HTTPS client support in mod_proxy you
don't need this experimental stuff. mod_ssl always provides basic HTTPS
support for mod_proxy.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
