Article delegate-en/4681 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] Bad Request with SNI
01 Dec 2009 17:25:00 GMT "Bernhard Rauh" <pjejabdyi-aj46qzb42lfr.ml@ml.delegate.org>


Dear Yutaka,

 

I'm using a delegate-proxy as a certificate-gateway:

 

delegated SERVER=http -P9090 MOUNT="/* https://www.sslserver.de/*" 

        FSV="sslway -cert cert.pem -pass pass:password" 

        HTTPCONF="ver:1.0" \

        SSLTUNNEL=NEXTPROXY

 

The connection with the destination-host fails with the message "Bad Request
- Your browser sent a request that this server could not understand."

 

The following entries are in the log-file of the destination-host:

Hostname 1x.1x.9x.1x provided via SNI and hostname www.sslserver.de provided
via HTTP are different

 

The destination-host is a Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8j
and SNI activated.

 

The item hostname (1x.1x.9x.1x) is the entry in the client-browser. It
seems, that the delegate works not as a transparent proxy to connect with
his own address.

 

Cheers,

Bernhard

 


GENIA-SEC IT-Sicherheitsmanagement GmbH
Lerchenstr. 40
86830 Schwabmuenchen

Telefon: 00000/000-00X
Telefax: 00000/000-00X
Web: http://www.genia-sec.de/
________________________________________________
Geschaeftsfuehrer: Dipl.-Inform. Christian Brinz   Sitz der Gesellschaft: Schwabmuenchen   Handelsregister: AG Augsburg, HRB 17726



  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V