Thanks, but this doesn't really answer my question. I am fully aware of how to connect using straight http. I am also aware of how to tunnel my request through something like sslproxy. However, sslproxy adds a ton of overhead and plain http is NOT secure. So my question...is there a way to make the ssl client (that is called through the ProxyPass) connect by either forcing SSLv3 only OR connecting without TLS (-no_tls)?
> -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Thursday, October 04, 2001 11:55 AM > To: [EMAIL PROTECTED] > Subject: RE: ProxyPass and bad mac decode > > > Simply use http://crappy.ibmhttpserver.com/ if secure > proxying doesn't work. > Of course, data between your two hosts will be "plain-text". > > - > John Airey > Internet systems support officer, ITCSD, Royal National > Institute for the > Blind, > Bakewell Road, Peterborough PE2 6XU, > Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 > [EMAIL PROTECTED] > > > >-----Original Message----- > >From: Sintz, James [mailto:[EMAIL PROTECTED]] > >Sent: 04 October 2001 16:46 > >To: '[EMAIL PROTECTED]' > >Subject: ProxyPass and bad mac decode > > > > > >I have the following line in my Apache httpd.conf > > > >ProxyPass /location/ https://crappy.ibmhttpserver.com/ > >ProxyPassReverse /location/ https://crappy.ibmhttpserver.com/ > > > >I get the following error when Apache tries to connect. > > > >RProxy Error > >The proxy server received an invalid response from an > upstream server. > >The proxy server could not handle the request GET /employerweb1/. > > > >Reason: SSL proxy connect failed (www.myserver.org:443): peer > >crappy.ibmhttpserver.com:443: bad mac decode > > > >For some reason the ibm httpd server that I am trying to > >connect to does not > >except 'tls' (I got my info from reading the list archives for > >this list and > >openssl). What I can't seem to figure out is how to get the > client that > >Apache ProxyPass uses to connect to the server, to connect > >without 'tls'. > > > >Is it possible to tell Apache to make a client connection > >using '-no_tls'? > >Similar to the way you can have the openssl's s_client > connect with the > >'-no_tls' option. > > > >Thanks!! > > > >Jamey > > > >_____________________________________________________________ > _________ > >Apache Interface to OpenSSL (mod_ssl) www.modssl.org >User Support Mailing List [EMAIL PROTECTED] >Automated List Manager [EMAIL PROTECTED] > - NOTICE: The information contained in this email and any attachments is confidential and may be legally privileged. If you are not the intended recipient you are hereby notified that you must not use, disclose, distribute, copy, print or rely on this email's content. If you are not the intended recipient, please notify the sender immediately and then delete the email and any attachments from your system. RNIB has made strenuous efforts to ensure that emails and any attachments generated by its staff are free from viruses. However, it cannot accept any responsibility for any viruses which are transmitted. We therefore recommend you scan all attachments. Please note that the statements and views expressed in this email and any attachments are those of the author and do not necessarily represent those of RNIB. RNIB Registered Charity Number: 226227 Website: http://www.rnib.org.uk ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
