Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MITM https problem #63

Closed
tsgan opened this issue Oct 4, 2014 · 7 comments
Closed

MITM https problem #63

tsgan opened this issue Oct 4, 2014 · 7 comments

Comments

@tsgan
Copy link

tsgan commented Oct 4, 2014

I'm using code from #9

When I try to access https://www.yahoo.com, browser only shows "Get me out of here" button.

Log says:
...
2014/10/04 23:39:16 [012] INFO: Running 1 CONNECT handlers
2014/10/04 23:39:16 [012] INFO: handler: &{2 } www.yahoo.com:443
2014/10/04 23:39:16 [012] INFO: Assuming CONNECT is TLS, mitm proxying it
...

For other sites like hotmail.com browser shows "I understand the risks" and let me Add exception and go further.
How to solve above problem when accessing https://www.yahoo.com?
Please let me know.

thanks,
@elazarl
Copy link
Owner

elazarl commented Oct 5, 2014

Hi,

Did you add the root certificate of goproxy to your operating system, or
your browser, in case of Firefox?
On Oct 4, 2014 6:56 PM, "tsgan" notifications@github.com wrote:

I'm using code from #9 #9

When I try to access https://www.yahoo.com, browser only shows "Get me
out of here" button.

Log says:
...
2014/10/04 23:39:16 [012] INFO: Running 1 CONNECT handlers
2014/10/04 23:39:16 [012] INFO: handler: &{2 } www.yahoo.com:443
2014/10/04 23:39:16 [012] INFO: Assuming CONNECT is TLS, mitm proxying it
...

For other sites like hotmail.com browser shows "I understand the risks"
and let me Add exception and go further.
How to solve above problem when accessing https://www.yahoo.com?
Please let me know.

thanks,


Reply to this email directly or view it on GitHub
#63.

@tsgan
Copy link
Author

tsgan commented Oct 5, 2014

Do you mean ca.pem in client computer?

@elazarl
Copy link
Owner

elazarl commented Oct 5, 2014

Yes.
Which OS/Browser are you using?

On Sun, Oct 5, 2014 at 7:10 AM, tsgan notifications@github.com wrote:

Do you mean ca.pem in client computer?


Reply to this email directly or view it on GitHub
#63 (comment).

@tsgan
Copy link
Author

tsgan commented Oct 5, 2014

Testing in Firefox on Mac OS X Mavericks

@elazarl
Copy link
Owner

elazarl commented Oct 5, 2014

Did you add the certificate to Firefox?
On Oct 5, 2014 10:36 AM, "tsgan" notifications@github.com wrote:

Testing in Firefox on Mac OS X Mavericks


Reply to this email directly or view it on GitHub
#63 (comment).

@tsgan
Copy link
Author

tsgan commented Oct 5, 2014

Yes, I added ca.pem to Firefox and it seems working now. Thanks. Is it the only solution in this case?

@elazarl
Copy link
Owner

elazarl commented Oct 5, 2014

Yes. The browser is a preventing you from browsing to websites with bad
certificate.

Look for certificate of certificate pinning.
On Oct 5, 2014 10:46 AM, "tsgan" notifications@github.com wrote:

Yes, I added ca.pem to Firefox and it seems working now. Thanks. Is it the
only solution in this case?


Reply to this email directly or view it on GitHub
#63 (comment).

@elazarl elazarl closed this as completed Oct 20, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@elazarl @tsgan