On Thu, 12 Sep 2002, Jeremy, Leonard wrote: > I have setup an apache ssl reverse proxy using v1.3.26 with mod_ssl This > works but serves a certificate from the reverse proxy to the client instead > of passing through the certificate from the end server.
Yes of course... it does that by design. The certificate contains the public key; the proxy needs the corresponding private key for whichever certificate it's going to present to the client. The only private key it has access to is its own, not the one of the backend server. The only way to get the backend's certificate through to the client is to either use the proxy CONNECT method (ie, the proxy just blindly hands packets from the client to the server without decrypting them) or to not use a proxy at all. --Cliff ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
