First of all, i'd like to congratulate you for this great software.
It's really a great piece of software!
Well, here's what i'm trying to do:
. I want to use delegate as a transparent proxy for HTTP and HTTPS
protocols. I run it on port 8080 on my gateway, and do a NAT
redirection for all port 80/443 outgoing traffic to my gatewayip:8080.
This is the command I used:
./delegated -P8080 RELAY=vhost SERVER=http STLS=-fcl,-fsv
When i try to access a HTTPS site from a client, it shows me a
delegate page with info about the client. The i tried it like this:
./delegated -P8080 MOUNT="/* odst.-:-" SERVER=http STLS=-fcl,-fsv
Then it showed me a page complaining about Non-CERN proxy clients.
What parameter should I use to allow clients on my internal network to
access HTTP/HTTPS sites using my proxy transparently?
. Second problem: I'm setting up this firewall as a monitoring machine
to study malware related traffic. So I want to do HTTPS sniffing for
the connections above. I tried using the parameter STLS=-mitm, but
delegated complain with this message in stdout.log: ##
beManInTheMiddle: Not Available in the Source Distribution"
So i tried running with the parameters below:
./delegated -P8080 SERVER=http STLS=-fcl,-fsv LOGDIR=/tmp
It seems it does not work as I expected. It's logging the traffic, but
on HTTPS connections it's logging the encrypted data. How can I log
the unencrypted data? Is this possible with delegate?
What parameter should I use to accomplish both necessities from above?
Thank you very much for you time.