|
|
Openssl through HTTP Proxy (cUrl?)
Greetings all,
I need to get an SSL certificate from a server outside of my corporate
network. Inside the network, we use "openssl s_client -connect
host:port" to get that and then use other openssl commands to get some
information of interest. However, when accessing external sites, we
must pass through an NTLM authenticated proxy and therefore direct
connections simply give a connection refused. I Googled for some time
and found no resolution to using openssl over a proxy.
So I thought of using cUrl in some way, which can connect through the
proxy if provided with proper options and authentication. So this
allows me to connect to external sites and enabling "verbose" mode
will allow me to output some of the certificate info (issuer, exp
date, etc), but not all the info I can grab with openssl.
So the question is, is anyone aware of a way to either connect with
openssl over a NTLM authenticated proxy or retrieve all the SSL cert
info using cUrl or some other function (maybe a combination of opening
a connection with cUrl and having openssl commands run over this
connection)?
|
|
0
|
|
|
|
Reply
|
 Daniel
|
9/7/2010 8:16:45 PM |
|
Hello,
on 09/07/2010 05:16 PM Daniel said the following:
> Greetings all,
>
> I need to get an SSL certificate from a server outside of my corporate
> network. Inside the network, we use "openssl s_client -connect
> host:port" to get that and then use other openssl commands to get some
> information of interest. However, when accessing external sites, we
> must pass through an NTLM authenticated proxy and therefore direct
> connections simply give a connection refused. I Googled for some time
> and found no resolution to using openssl over a proxy.
>
> So I thought of using cUrl in some way, which can connect through the
> proxy if provided with proper options and authentication. So this
> allows me to connect to external sites and enabling "verbose" mode
> will allow me to output some of the certificate info (issuer, exp
> date, etc), but not all the info I can grab with openssl.
>
> So the question is, is anyone aware of a way to either connect with
> openssl over a NTLM authenticated proxy or retrieve all the SSL cert
> info using cUrl or some other function (maybe a combination of opening
> a connection with cUrl and having openssl commands run over this
> connection)?
You may want to try this HTTP client class. It supports SSL and several
authentication mechanisms including NTLM.
http://www.phpclasses.org/httpclient
You also need this package to provide NTLM client support.
http://www.phpclasses.org/sasl
--
Regards,
Manuel Lemos
JS Classes - Free ready to use OOP components written in JavaScript
http://www.jsclasses.org/
--- news://freenews.netfront.net/ - complaints: news@netfront.net ---
|
|
|
0
|
|
|
|
Reply
|
 mlemos (660)
|
9/8/2010 4:58:46 AM
|
|
|
1 Replies
312 Views
(page loaded in 0.043 seconds)
Similiar Articles: TLS negotiation - comp.mail.miscI amtrying to send a mail through gmail using ... -- God said, "div D = rho, div B = 0, curl E ... me.uk [192.168.100.63] Have a look at: http://www.mail-archive.com/openssl ... root CA certificates for wget/openssl - comp.unix.solaris ...... with a wget binary which is linked against OpenSSL ... is non-standard and didn't work with some proxies. Unfortunately wget doesn't support feeding authentication data via ... Socket connection from HTTP to HTTPS - comp.lang.rexxRexx/cURL should provide all these features. http://rexxcurl.sf.net Cheers ... the same with the s_client from openssl ... SSL connection via Proxy HTTP - comp.lang.java ... Secure Sopckets and Mutual Authentication - comp.lang.java ...SSL connection via Proxy HTTP - comp.lang.java.security Secure Sopckets and Mutual ... JSSE and OpenSSL 0.9.7 incompatible - comp.lang.java.security ... I have some code ... SSL Connection java - comp.lang.java.securitySSL connection via Proxy HTTP - comp.lang.java.security Hi everyone. I need to retrieve ... SSL Connection java - comp.lang.java.security SSLException using TLS with OpenSSL ... Solaris LDAP client - TLS client authentication against OpenLDAP ...I will use proxy authentication. On Apr 19, 12:07 ... A0 =A0 =A0 =A0 =A0 - generate a cert request > 3 openssl ... Identity MANAGER CA Role Manager Oracle HTTP Server ... Can't Debug in Ruby - comp.lang.rubyAny ideas? -- Posted via http://www.ruby-forum.com/. ... I would guess that Code Red uses OpenOCD as a gdb proxy ... My OpenSSL server crashes - comp.lang.ruby Somehow, the ... Authentication issue in JRE - comp.lang.java.security... questo articolo e` stato inviato via web dal servizio gratuito http://www ... root CA certificates for wget/openssl - comp ... Bug ID: 4518282 RFE: Avoid multiple proxy ... SSLException: Unrecognized SSL message, plaintext connection ...SSLException using TLS with OpenSSL server - comp.lang.java ... Unrecognized ... Socket connection from HTTP to HTTPS - comp.lang.rexx SSL connection via Proxy HTTP ... Incompatible magic value 1008813135 error with applet - comp.lang ...See http://mindprod.com/applet/wassup.html -- Roedy ... If it's not your web server, then it can be their proxy ... When I'm back next week from conferences I'll go through ... Openssl through HTTP Proxy (cUrl?) - Web Development Blog ...Greetings all, I need to get an SSL certificate from a server outside of my corporate network. Inside the network, we use "openssl s_client -connect host:port" to get ... cURL - How To Use - cURL and libcurlThe certificates must be in PEM format, and if curl is built against OpenSSL, the directory ... All operations that are performed over a HTTP proxy will transparently be ... 7/23/2012 3:01:52 PM
|
|
|
|
|
|
|
|
|
Search |
Post Question |
Groups |
Stream |
About |
Register
5 followers. 