http://qs321.pair.com?node_id=856043


in reply to Re^2: HTTP::Proxy SSL Man in the middle
in thread HTTP::Proxy SSL Man in the middle

I haven't ever written anything with HTTP::Proxy but it looks very flexible so you might be able to convince it to work with SSL. On the other hand, HTTP::Proxy isn't really designed for MITM attacks so it'll want to add the proper headers and such.

One way to do this would be to use POE. You can do something based on the Cookbook example of a simple Web Proxy.

  • Comment on Re^3: HTTP::Proxy SSL Man in the middle

Replies are listed 'Best First'.
Re^4: HTTP::Proxy SSL Man in the middle
by Anonymous Monk on Aug 20, 2010 at 01:06 UTC
    I don't know about SSL, but HTTP::Proxy lends itself very nicely for monitoring/modifying things by being man-in-the-middle. I use it to allow special commands to be run by the proxy when a user requests specific URLs. I created a filter that monitors URLs, and breaks them apart. I can use this filter to modify what someone is asking for, change what is fed back to a user, and if I need the system to take an action and create a complete HTML page on the fly. Again, I do all of this with HTTP, not SSL. I don't know if HTTP::Proxy supports SSL, never tried it. Anyone try to get SSL to work with HTTP::Proxy? Good question.
[reply]

In Section Seekers of Perl Wisdom