GLOBALEAKS
-
|
Can Globaleaks be deployed behind a proxy or WAF with SSL offloading? originally asked by @marangiom |
Beta Was this translation helpful? Give feedback.
Answered by
evilaliv3
Mar 19, 2026
Replies: 1 comment
-
|
Unfortunately no. Globaleaks is intentionally designed to terminate TLS directly on the application server, ensuring true end-to-end encryption. Deployments that rely on SSL/TLS offloading are not supported, as they break the security model and introduce additional trusted components in the communication chain. For this reason, Globaleaks must be exposed directly over HTTPS, without intermediaries that terminate TLS. |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
evilaliv3
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Unfortunately no.
Globaleaks is intentionally designed to terminate TLS directly on the application server, ensuring true end-to-end encryption. Deployments that rely on SSL/TLS offloading are not supported, as they break the security model and introduce additional trusted components in the communication chain.
For this reason, Globaleaks must be exposed directly over HTTPS, without intermediaries that terminate TLS.