Hi,
I wrote a redirector which redirects all 80/443 port to my proxy in Delphi. I am handling all socket data/connection. What i need is to filter SSL traffic. I need some advice before ordering.
My questions are:
1. Client sends data to port 443. Server receives this data but it is encrypted. How can i decrypt this SSL data to see what hostname and url client is trying to connect? I can already the existing data to server without modifying it. But when I receive data from server, how can i again decrypt it (to check for title)?
2. When we use this VCL to encrypt/decrypt, is browser going to prompt untrusted certificate dialog box?
3. Again, using our own sockets which is coded using Winapi, how can i create a client request, send to server and decode incoming data from server?
Please kindly advice.
Bests,
I need to de/encrypt ssl data for my proxy
It is impossible decrypt SSL data because it will be breaking of SSL protocol.
If you want to implement the following schema - user connects to your own SSL server, your server decrypt data, processes and sends it to the external SSL server via the new created connection - then you need to implement SSL server, because SecureBridge doesn't support SSL server.
If you want to implement the following schema - user connects to your own SSL server, your server decrypt data, processes and sends it to the external SSL server via the new created connection - then you need to implement SSL server, because SecureBridge doesn't support SSL server.