Fastream Technologies wrote: > Yes I know BUT how does it know the destination IP/port of the web > server if the > > GET http://www.micro$oft.com/index.php ( :) ) > > is encrypted??
It cannot know that, there is a method CONNECT. The HTTP CONNECT method is described in an IETF Internet-Draft written by Ari Luotonen http://www.web-cache.com/Writings/Internet-Drafts/draft-luotonen-web-proxy-tunneling-01.txt This draft probably is expired, search google for updates. Once a client is authenticated, any traffic is just tunneled like it is done in Wilfried's socketspy. A real proxy component is GpHttpProxy. --- Arno Garrels [TeamICS] http://www.overbyte.be/eng/overbyte/teamics.html > > Thanks for the answer, > > SZ > > ----- Original Message ----- > From: "Arno Garrels" <[EMAIL PROTECTED]> > To: "ICS support mailing" <twsocket@elists.org> > Sent: Wednesday, August 23, 2006 4:19 PM > Subject: Re: [twsocket] HTTPS forward proxy server > > >> Fastream Technologies wrote: >>> Hello, >>> >>> I wonder how forward proxy servers other than BlueCoat.com (there >>> was a discussion about them before) read the SSL'ed Host address to >>> forward the request to that IP/Port. Is there a special RFC for >>> HTTPS proxies? >> >> If you do not mean a SSL filtering proxy like BlueCoat the proxy just >> tunnels the SSL traffic, see GpHttpProxy made with ICS, and THttpCli. >> >> --- >> Arno Garrels [TeamICS] >> http://www.overbyte.be/eng/overbyte/teamics.html >> >>> >>> Best Regards, >>> >>> SubZero >> -- >> To unsubscribe or change your settings for TWSocket mailing list >> please goto http://www.elists.org/mailman/listinfo/twsocket >> Visit our website at http://www.overbyte.be -- To unsubscribe or change your settings for TWSocket mailing list please goto http://www.elists.org/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
