Commit aa51f16c authored by Jamie Tanna's avatar Jamie Tanna

Document OpenSSL with a proxy

Closes #628.
parent 9873bbe7
Pipeline #74943112 passed with stages
in 8 minutes and 23 seconds
---
title: "Using OpenSSL Behind a (Corporate) Proxy"
description: "How to use OpenSSL commands when behind a proxy server."
tags:
- blogumentation
- openssl
- proxy
license_code: Apache-2.0
license_prose: CC-BY-NC-SA-4.0
date: 2019-08-06T12:51:11+0100
slug: "openssl-proxy"
---
When at work, I'm behind a corporate proxy, which requires all my traffic to the outside world needing to pass through the proxy for various security reasons.
However, if I'm trying to i.e. use OpenSSL to get the public certificate for a website using the steps in my article [_Extracting SSL/TLS Certificate Chains Using OpenSSL_]({{< ref "2017-04-28-extract-tls-certificate" >}}), I've found that the requests I send sending are just timing out.
I found that this is because OpenSSL doesn't go via the proxy unless you explicitly tell it with an explicit `-proxy`:
```sh
openssl s_client -showcerts -connect "jvt.me:443" -proxy http://proxy.example.com:8888 ...
```
With that set, my connections then start to go through OK again.
---
posts:
- https://www.jvt.me/posts/2019/08/06/openssl-proxy/
- https://www.jvt.me/posts/2019/08/02/extract-secret-key-java-keystore/
- https://www.jvt.me/posts/2019/08/01/node-parse-url-fragment/
- https://www.jvt.me/posts/2019/07/27/rsvp-calendar/
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment