On Fri, Jan 10, 2003 at 02:57:12PM +0530, Chandrasekhar R S wrote: > I have the following scenario - > > client ----- Proxy ----- server. > SSLClient ----- SSLServer | SSLClient ----- SSL Server. > > It is my intent to pass on the clients certificate to the server for > verification and acceptance. > > Since, the connection is via a proxy, the clients certificate could reach > upto the proxy only and not beyond, to the server. I believe, that the > proxy should not be able to use the clients cert in its connection with the > server, as the client certificate is tightly coupled with its public key. > > I have visited the redhat's Stronghold webpage and their proxy server seems > to be capable of doing just this. > > Is anyone aware of the technique employed.
CONNECT method of HTTP can be used to setup TCP connections first and run SSL next. Proxy could forward SSL traffic > > Namaste, > R S Chandrasekhar > [EMAIL PROTECTED] > ISD : 091-080-2051166 > Telnet : 847-1166 > Phone : 2052427 > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
