On Tue, Sep 1, 2020 at 10:58 AM Tom Browder <tom.brow...@gmail.com> wrote: > > Is there any way with the Apache logs to see (and capture) the raw data being > received on the backside of a reverse proxy using TLS?
I assume https://httpd.apache.org/docs/2.4/mod/mod_dumpio.html will have it. > > If so, is there any way to unenccode the data offline with OpenSSL if one has > the public and private keys? There are wireshark recipes for this, but IIUC w/ ECDHE you also need to export the ephemeral key (or something that isn't just in the cert) which browsers sometimes support with SSLKEYLOGFILE. I think httpd only does this in trunk -- search under the same keyword SSLKEYLOGFILE --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
