> Is it possible to have 2 different SSL sessions (tunnels) - one with > the server and one with the browser? > > I know that it may cause warnings, and that there is a danger of "a man > in the middle", but sometimes there is no other option...
You can do this using the rewrite module. There is an example of an HTTP to HTTP reverse proxy in the rewrite module guide. Extending that to do what you want is easy. Note that you have to put the rewrite rules in the right part of your httpd.conf. In the standard SSL configuration, the HTTPS traffic is dealt with by a virtual server. Your rewrite rules have to go into that section. I put mine in the main (HTTP) section and spent ages trying to figure out why they didn't work. If you are worried about Man in the Middle, I guess you could check your proxy's digital certificate on your target server. Simon
