Soner Tari
8590d61291
Add the Mode of Operation Diagram
7 years ago
Soner Tari
0b420556ea
Add presentation
7 years ago
Soner Tari
5bba07b27f
Use SSL_CTX_set_min_proto_version() and SSL_CTX_set_max_proto_version() functions to force SSL/TLS protocol version for OpenSSL 1.1.0+
7 years ago
Soner Tari
6f023e5990
Avoid comparison between signed and unsigned integer, reported by @janusloo on Linux DietPi 4.14.22-v7+ #1096 SMP Mon Feb 26 19:14:22 GMT 2018 armv7l GNU/Linux, I don't see such warnings on 64-bit OpenBSD or Linux though, even with -Wsign-compare
7 years ago
Soner Tari
0fee063e0c
Use %zu for size_t, and avoid comparison between signed and unsigned integer, reported by @janusloo
7 years ago
Soner Tari
f6a63c33b1
Fix time_t portability, see https://www.openbsd.org/papers/eurobsdcon_2013_time_t/mgp00029.html
7 years ago
Soner Tari
42348cbe41
Add Ciphers option to conf file
7 years ago
Soner Tari
9d435e180c
Update with SSLsplit 0.5.2 and develop branch changes as of 270218
7 years ago
Soner Tari
ae69b21908
Fix build on Linux, need to implement getdtablecount(2) of OpenBSD
7 years ago
Soner Tari
6a9b572bac
Update man pages to 0.5.4
7 years ago
Soner Tari
d76a9a52ad
Fix examples
7 years ago
Soner Tari
e2e910ba08
Update title and copyright year
7 years ago
Soner Tari
4c8831bd90
Update with SSLsplit 0.5.1 changes, fix LibreSSL version issues
...
Add VerifyPeer and AllowWrongHost options
7 years ago
Soner Tari
a56929922d
Fix link
7 years ago
Soner Tari
a2b14097dd
Verify upstream certificates, see https://insights.sei.cmu.edu/cert/2015/03/the-risks-of-ssl-inspection.html
7 years ago
Soner Tari
3ae89131dc
Use different syslog facilities for error, conn, and stats logs, so they can be filtered into separate log files in syslog.conf
7 years ago
Soner Tari
392c6be48c
Add SSLproxy copyright to -v output
7 years ago
Soner Tari
b064ffa668
Use llu int as unique conn id, much simpler than uuid
7 years ago
Soner Tari
137f017cb5
Fix EXPIRED message bug, other fixes and improvements
7 years ago
Soner Tari
a1c5d05143
Add support for log priority to error logs, so syslogd prints the correct prio for error logs now
7 years ago
Soner Tari
179aa4fc8f
Close the conn if we are out of file descriptors, or libevent will crash us
7 years ago
Soner Tari
4bf27d09e5
Add RemoveHTTPReferer option, Referer causes redirection errors with some sites
7 years ago
Soner Tari
19f5a70920
Update README
7 years ago
Soner Tari
ee707ab6cb
Update man pages
7 years ago
Soner Tari
f7b3930053
Fix divert link
7 years ago
Soner Tari
077e97dbba
Add more CRITICAL error logs
...
Fix some logs
Clean-up
7 years ago
Soner Tari
09c3e864c5
Add sslproxy.conf man page
7 years ago
Soner Tari
a79cf4e0d1
Add sslproxy.conf man page and example sslproxy.conf, and related make changes
7 years ago
Soner Tari
d52ee62079
Add RemoveHTTPAcceptEncoding option
7 years ago
Soner Tari
8bd7827b8e
Improve man page and README
7 years ago
Soner Tari
32a38b7b4d
Update README, fix mistakes
7 years ago
Soner Tari
867ffe28e6
Fix typo
7 years ago
Soner Tari
7e8d94d0a6
Fix typos
7 years ago
Soner Tari
3717bddc36
Update README
7 years ago
Soner Tari
40f1997bfb
Update README
...
Update man page
7 years ago
Soner Tari
28cfac12e9
Update man page for SSLproxy
7 years ago
Soner Tari
4fceaaa0e9
Fix compiler warning
...
Rename the man page for the ports package
7 years ago
Soner Tari
0b5ef8b14d
Mark critical errors as CRITICAL
7 years ago
Soner Tari
9ec58f821b
Changes needed while adding SSL proxy support to WUI
...
Separate mail/mails to pop3/pop3s/smtp/smpts for statistics
Write connect logs to syslog too, for statistics
Fix log lines for statistics, remove fds from err logs
7 years ago
Soner Tari
7748e3ec1b
Add conf file support, with -f command line option, supports a subset of all possible options
7 years ago
Soner Tari
1a6eab50a5
Tidy and clean logs up
...
Add DEBUG_PROXY directive around all log_dbg_level_printf() and related lines
Log stats to syslog, similar to error logs, so that it is simpler to rotate and parse
-O w/o -g is failing bufferevent_socket_connect for parent dst, so either enable -O w/ -g, or disable -O w/o -g (-O2 is failing too)
Refactoring
7 years ago
Soner Tari
36c89a0314
Fix crash if no logging enabled
...
Disable debug, the default now
7 years ago
Soner Tari
ea6dc07248
Rename to sslproxy
...
Reduce http headers to just one SSLproxy line
7 years ago
Soner Tari
4bfc85868b
Add support for pop3 (p3scan pop3 proxy)
...
Send sslproxy info only once, in the first packet only
Clean-up
7 years ago
Soner Tari
9e637dd2cc
Clean-up
7 years ago
Soner Tari
1ae732f533
There are 3 dst bevs, writecbs of all of them may fire before connected event, so call eventcb first when that happens for each dst bevs.
...
Check if srv_dst bev is NULL or not: Since both eventcb and writecb for srv_dst are enabled, either eventcb or writecb may get a NULL srv_dst bev, causing a crash with signal 10.
Remove unnecessary evutil_closesocket() calls, they could close the fds twice, causing conn stalls
7 years ago
Soner Tari
5a136b7ce7
Add extra stats
...
Rearrange, clean-up
7 years ago
Soner Tari
cea873e6f2
Set the OPENBSD directive at compile time
7 years ago
Soner Tari
b6d1d92990
Fix use after free, other.bev may be NULL
7 years ago
Soner Tari
d35e9af521
Fix use after free, other.bev may be NULL
7 years ago