Archives
/
SSLproxy
mirror of https://github.com/sonertari/SSLproxy
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
320 Commits
2 Branches
25 Tags
3.0 MiB
develop
master
v0.5.0
v0.5.1
v0.5.2
v0.5.3
v0.5.4
v0.5.5
v0.5.6
v0.5.7
v0.5.8
v0.5.9
v0.6.0
v0.7.0
v0.8.0
v0.8.1
v0.8.2
v0.8.3
v0.8.4
v0.8.5
v0.8.6
v0.9.0
v0.9.1
v0.9.2
v0.9.3
v0.9.4
v0.9.5
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c8e9f231bd'
${ noResults }
Commit Graph

11 Commits (c8e9f231bdeb045422d0c2cc05b5ea07b37dab5d)

Author SHA1 Message Date
Daniel Roethlisberger c8e9f231bd Fix loading of certificate chains with OpenSSL 1.0.2 
SSLsplit was directly accessing `extra_certs` within `SSL_CTX` to get to
the extra certificates chain.  When building on OpenSSL 1.0.2 or newer,
use the new API instead of directly accessing `extra_certs`.

Issue:		#79
 9 years ago
Daniel Roethlisberger 61cd0fb541 SSLsplit 0.4.10 release 10 years ago
Daniel Roethlisberger 008821cfca Update NEWS.md 10 years ago
Daniel Roethlisberger f076336e0b Don't allow -u on Mac OS X with pf proxyspecs 
Apple checks EUID==0 on ioctl(/dev/pf), whereas OpenBSD and FreeBSD only
check permissions on open(/dev/pf).  This means that on OS X, it is not
possible to open /dev/pf, drop privileges, and send an ioctl to the file
descriptor opened earlier with EUID==0.  It also means Apple broke the
Unix way of dealing with device nodes - why are there file permissions
on /dev/pf when they later enforce EUID==0 on use, thereby breaking
basic Unix mechanisms?  Work around this by disallowing -u with pf
proxyspecs and by not automatically dropping to nobody on Mac OS X.

Issue:		#65
Reported by:	Vladimir Marteev
 10 years ago
Daniel Roethlisberger 125163a003 Add local process lookup on FreeBSD using sysctl() API 10 years ago
Daniel Roethlisberger c35e40a597 Update NEWS.md for OpenSSL 0.9.8y bug workaround 10 years ago
Daniel Roethlisberger 6cc01ec32b Update NEWS.md for -i 10 years ago
Daniel Roethlisberger f656bcabb7 Update NEWS.md 10 years ago
Daniel Roethlisberger c8ba26f60d Update documentation after merging #56 10 years ago
Daniel Roethlisberger 6b0e47dc89 Allow more control over used SSL/TLS versions 
Add -r to force a specific SSL/TLS protocol version.
Add -R to disable one or several SSL/TLS protocol versions.
Replace WANT_SSLV2_CLIENT and WANT_SSLV2_SERVER to WITH_SSLV2.

Issue:		#30
Reported by:	@Apollo2342
 10 years ago
Daniel Roethlisberger 67ed768fec Migrate documentation to markdown 
Issue:		#33
 10 years ago