distinguishing http and https connections

Sat, 24 Aug 2019 06:45:10 -0700 

OK, Andreas,

thanks for the answer. It is clear, and not surprising, I guessed it was
like that but I wanted to be sure.

Best Regards

Michel


----------------------------------------------------------------------

Message: 1
Date: Fri, 23 Aug 2019 12:12:58 +0200
From: "A. Schulze" <[email protected]>
To: [email protected]
Subject: Re: distinguishing http and https connections
Message-ID:
        <[email protected]>
Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes


dy1977--- via Unbound-users:



1) Is it possible to distinguish, at the level of the "operate" function
in the python script, if the connection is http or https ?

no, there is no indication about the purpose a client ask for a DNS-Record
and indent to use the answer.


2) Is there any hope to find a way to display an error page instead of
the great warning when an https connection has been redirected to either
127.0.0.1 or 192.168.1.184 ? I tend to think it is not possible, and I
would prefer not to spend hours around a chimer. I have tried to use the
unbound generated certificate and an autosigned apache certificate. Is
it useful to try with a certificate given by Let'sencrypt ? I don't know
enough about ssl, but I guess the browser cannot be happy to see a
certificate (even if it is valid) which has nothing to do with the site
it is trying to connect with.

that's why DNS interception will create trouble. A Browser like to connect
to https://example.org, send the simple question mentioned above, got
a faked answer from DNS
and still expect to connect to https://example.org

An now think what certificates was build for: to proof, the client is
connected to the /right/ server...
( ok, not a perfect world ... )

unbound can't help here, it's the wrong layer ...

Andreas



------------------------------

Subject: Digest Footer

_______________________________________________
Unbound-users mailing list
[email protected]
https://nlnetlabs.nl/mailman/listinfo/unbound-users


------------------------------

End of Unbound-users Digest, Vol 141, Issue 16
**********************************************



---
L'absence de virus dans ce courrier électronique a été vérifiée par le logiciel 
antivirus Avast.
https://www.avast.com/antivirus

Reply via email to