The short answer is: It is possible, and can be done with either a special HTTP proxy or a SOCKS proxy.įirst and foremost, HTTPS uses SSL/TLS which by design ensures end-to-end security by establishing a secure communication channel over an insecure one. Note that modern websites and browsers can employ HPKP or built-in certificate pins which defeat this approach. This has also been used in a less-benign context by an Egyptian ISP. Similarly, burp can be configured to do this. Proxy transparently intercepts the connection andĪn example is Squid's SSL bump.If you want the proxy to be able to read information, you can take the following approach: In this case, the proxy will not be able to cache, read, or modify any requests/responses, and therefore be rather useless. Normally, you use CONNECT to open up a TCP connection through the proxy. ![]() TLS/SSL (The S in HTTPS) guarantees that there are no eavesdroppers between you and the server you are contacting, i.e.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |