locked0wn has asked for the wisdom of the Perl Monks concerning the following question:
Hello monks,
I have always wanted to setup an SSL man-in-the-middle Proxy to help monitor what kids are doing online. Can anyone tell me if there is a way to use HTTP::Proxy in this manner?
I am trying to meet my own requirements as such:
If the browser accepts this fake cert, the proxy has access to the data in the clear!
Basically, this will allow me to write perl regex scripts to see if my kids are violating family use of the Internet. They already know the house rule is to monitor all outgoing traffic. At the moment, I monitor HTTP, but want a proxy for SSL, too.
Thank you very much in advance for your help.
I have always wanted to setup an SSL man-in-the-middle Proxy to help monitor what kids are doing online. Can anyone tell me if there is a way to use HTTP::Proxy in this manner?
I am trying to meet my own requirements as such:
- Instead of forwarding encrypted data between the two hosts, proxy will set up two DIFFERENT SSL connections between the two.
- Proxy<->Remote Server Sets up a normal SSL client connection to requested remote site
- Proxy<->Browser Sets up a SSL server connection to the browser, using its own certificate, generated as a copy of the remote host’s cert
If the browser accepts this fake cert, the proxy has access to the data in the clear!
Basically, this will allow me to write perl regex scripts to see if my kids are violating family use of the Internet. They already know the house rule is to monitor all outgoing traffic. At the moment, I monitor HTTP, but want a proxy for SSL, too.
Thank you very much in advance for your help.
Back to
Seekers of Perl Wisdom