Hi!
When your setup proxy setting for browsers, they using HTTP CONNECT method for
establish pure tcp-connection via proxy (not for local resources).
It's seems like:
Client send HTTP-request to proxy
CONNECT remotehost:port HTTP/1.1
Host: remotehost:port
And begin wait HTTP-response like:
HTTP/1.1 200 Connection established
Then browser send initiate ssl handshake over this pure tcp-channel.
Your proxy get HTTP-request instead ssl-handshake and fail:
2572:error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy
request:.ssls23_srvr.c:391
---
/ Alexey Drozdov
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Raj
Sent: Monday, July 26, 2010 12:59 PM
To: openssl-users@openssl.org
Subject: Man in the middle proxy - Not working
Hi All
Requirement:- I want to build a man in the middle proxy application.
I have experimented so many methods to achieve this. But my application is
failing when I tried some https url's from the browser
(IE 8 and Firefox 3.7).
I have configured my browser proxy settings to '4433' port. My application
is listening on this port, when I connect to this port from my browser,
with the URL https://localhost:4433 it is working, only a certificate warning
is there.
When I try to connect to another secured site, the SSL_accept function is
returning -1 and my error code is as follows.
"2572:error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy
request:.ssls23_srvr.c:391:"
I am not able to trace out the problem for many days.
Anybody please help me to trace out this issue, or send me some sample
application. What could be reasons for failure
Platforms I am using are :
MS Windows XP service pack 2
MS Visual Studio 2008 , VC++
Thanks,
Raj
Rajmohan SK
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
