I had to test a couple of proxy servers lately which had problems passing
CONNECT connections. I was missing a tool "like s_client but using a
proxy", so I added a quick hack to s_client. This patch adds a switch
$ openssl s_client -proxy myproxy:8080 -connect remoteserver:443
---------------------^^^^^^^^^^^^^^^^^^^
which tunnels the secure connection over an HTTP proxy tunnel.
I call it a "hack" because
a) I think there must be better ways to receive the response
"HTTP/1.x 200 OK" from the proxy but read()ing it directly
b) the echo of the proxy response should be filtered to display
only for the appropriate -verbosity level.
c) no attempt is made to catch connection errors or responses
other than "200 OK" from the proxy (think of -proxyauth user:pass)
Anyway, I thought someone might find this useful, so feel free to improve!
Martin
--
<[EMAIL PROTECTED]> | Fujitsu Siemens
Fon: +49-89-636-46021, FAX: +49-89-636-47655 | 81730 Munich, Germany
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
