HTTP Anti-Virus Proxy

Official HAVP Support Forum
Registration disabled, I'm tired of spambots. E-mail havp@hege.li if you have questions.
HAVP project is pretty much frozen/abandoned at this time anyway.
It is currently 22 Jun 2014 09:52

All times are UTC + 2 hours [ DST ]




Post new topic Reply to topic  [ 1 post ] 
Author Message
PostPosted: 26 Jul 2010 09:46 
Offline

Joined: 26 Jul 2010 07:35
Posts: 1
Here is my configuration of apache server. ( Ubuntu 10.04)

I pointed the SSL connection to the 8443 proxy.

I read the logfile. I got this message.

[Sat Jul 24 02:14:43 2010] [debug] ssl_engine_kernel.c(1938): OpenSSL: Exit: error in SSLv2/v3 read client hello A
[Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] SSL library error 1 in handshake (server school:8443)
[Sat Jul 24 02:14:43 2010] [info] SSL Library Error: 336027803 error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request speaking HTTP to HTTPS port!?
[Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] Connection closed to child 130 with abortive shutdown (server school:8443)


Include /etc/apache2/mods-enabled/*.load
Include /etc/apache2/mods-enabled/*.conf
serverRoot "/etc/apache2"

user www-data
group www-data

Listen 8443
Listen 8444
Listen 8445
<VirtualHost _default_:8443>
RewriteEngine on
KeepAlive On
<Directory />
Options ExecCGI
</Directory>
RewriteCond %{REQUEST_METHOD} !^(GET|POST)
RewriteRule .* - [F]
DocumentRoot /var/www
ServerAdmin root@localhost
ErrorLog /var/log/httpd/error_log
TransferLog /var/log/httpd/access_log
SSLEngine on
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT56:!eNULL:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+EXP
SSLCertificateFile /etc/httpd/server.cert
SSLCertificateKeyFile /etc/httpd/server.key
SSLCertificateChainFile /etc/httpd/server.cert
SetEnv HOME /home/nobody

ProxyRemote * http://127.0.0.1:8181
ProxyPreserveHost Off
RequestHeader unset xwasSSL
RequestHeader set xwasSSL true
Header unset Via
Header unset X-Cache
Header unset Vary

RewriteRule ^(.*)$ http://%{HTTP_HOST}$1
</VirtualHost>

<VirtualHost _default_:8444>

RewriteEngine on
<Directory />
Options ExecCGI
</Directory>
RewriteCond %{REQUEST_METHOD} !^(GET|POST)
RewriteRule .* - [F]
DocumentRoot /var/www
ServerAdmin root@localhost
ErrorLog /var/log/httpd/error_log
TransferLog /var/log/httpd/access_log
KeepAlive On
ProxyRemote * http://127.0.0.1:8181
ProxyPreserveHost Off
RequestHeader unset xwasSSL
RequestHeader set xwasSSL false

Header unset Via
Header unset X-Cache
Header unset Vary
RewriteRule ^(.*)$ http://%{HTTP_HOST}$1
</VirtualHost>

<VirtualHost _default_:8445>
ProxyRequests on
KeepAlive On

SSLProxyEngine on
ProxyVia block
ProxyPreserveHost Off
DocumentRoot /home/httpd/html
ServerAdmin root@localhost
ErrorLog /var/log/httpd/error_log
TransferLog /var/log/httpd/access_log
ProxyMaxForwards -1
SetOutputFilter INFLATE

<Proxy *>
RequestHeader unset Via
RequestHeader unset X-Forwarded-For
RequestHeader unset xwasSSL
RewriteEngine On

RewriteCond %{HTTP:xwasSSL} ^true$
RewriteRule ^proxy:http://(.*)$ proxy:https://$1
RewriteCond %{HTTP:xwasSSL} ^false$
RewriteRule ^proxy:http://(.*)$ proxy:http://$1
RewriteCond %{REQUEST_METHOD} !^(GET|POST)
RewriteRule .* - [F]

</Proxy>
</VirtualHost>


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ] 

All times are UTC + 2 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 0 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group