Re: SSL reverse proxy

From: <[email protected]>
Date: Mon, 29 May 2000 01:18:38 -0700 (PDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> The problem arises because the proxy can not see what's in the SSL channel
> without deciphering it. It can only deciper it by being an SSL endpoint.
> By doing so there can never be any end-to-end authentication.

Why couldn't the proxy perform a man-in-the-middle attack on the
connection?

Ian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE5Mifffn9ub9ZE1xoRAl/XAKCSeuC4fj1IotPXoPbJ3llQCxDTCwCgkU3S
5H0+UBtSwYuc5NQi+UUV6xI=
=DSd/
-----END PGP SIGNATURE-----
Received on Mon May 29 2000 - 02:22:06 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:53:35 MST