SSL proxy server

To: debian-security@lists.debian.org
Cc: slab@lab.epmhs.gr
Subject: SSL proxy server
From: Costas Magos <kmag@lab.epmhs.gr>
Date: Mon, 05 May 2003 18:03:42 +0300
Message-id: <3EB67D4E.7080202@lab.epmhs.gr>

Hello all,

My new problem is not exactly debian-related but is surelysecurity-related :-) Anyway, I need desperately your security expertiseso here it goes:

I am running a proprietary tacacs+ server that comes bundled with itsown web server used as management interface. The web server is alsocommercial (a netscape server) on which it is nearly impossible toenable SSL. As you can imagine, I need to access the web interfacethrough SSL..

Is it possible to create an SSL tunnel using stunnel or somethingsimilar to protect the web transactions? How can this be done? Anothersolution that I am thinking of (and prefer) is setting up a proxyapache-ssl server on the same machine (or another machine on the sameDMZ) so that SSL communication is conducted with the proxy across thefirewall and unecrypted traffic is confined in the DMZ. Is thatpossible? Can anybody help me in any way with such a configuration?


Thanks all in advance.

Costas Magos
Ariadne-t Network
~kmag
------------------------------------------------------------
Please do not CC me, as I am subscribed to debian-security

Reply to:

Follow-Ups:
- Re: SSL proxy server
  - From: Christoph Moench-Tegeder <cmt@rz.uni-karlsruhe.de>
- Re: SSL proxy server
  - From: "Douglas Blood" <newsgroups@dblood.matraex.com>
- Re: SSL proxy server
  - From: Costas Magos <kmag@lab.epmhs.gr>

Prev by Date: Re: JRE & JDK <1.4.1_02 vulnerable?
Next by Date: Can't fmirror security.debian.org
Previous by thread: subscribe
Next by thread: Re: SSL proxy server
Index(es):
- Date
- Thread