On Tue, May 04, 2004 at 02:30:06PM +0100, Barry Flanagan mentioned:
> You can do it with stunnel easily enough, although it has the singular
> disadvantage that IIS will see all requests coming from the stunnel
> boxes IP address, rather than the client address (unless this has been
> gotten around in the 4 years since I used it).
Well, that's not the problem. The problem is that the customer somehow
thinks that the box will get cracked if they get access to port 443.
Hence the desire for a proxy. So, stunnel will pass requests from the
end user straight to the IIS server.
Turns out that Paul Kelly worked out out; squid with
https_port 443 cert=/etc/squid/server.crt key=/etc/squid/server.key
will do the job.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!