Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

net::proxy::connector::connect_ssl(3pm) [debian man page]

Net::Proxy::Connector::connect_ssl(3pm) 		User Contributed Perl Documentation		   Net::Proxy::Connector::connect_ssl(3pm)

NAME

       Net::Proxy::Connector::connect_ssl - Create SSL/CONNECT tunnels through HTTP proxies

SYNOPSIS

	   # sample proxy using Net::Proxy::Connector::tcp
	   #		    and Net::Proxy::Connector::connect_ssl
	   use Net::Proxy;

	   # listen on localhost:6789
	   # and proxy to remotehost:9876 through proxy.company.com:8080
	   # using the given credentials
	   my $proxy = Net::Proxy->new(
	       in  => { type => 'tcp', port => '6789' },
	       out => {
		   type        => 'connect_ssl',
		   host        => 'remotehost',
		   port        => '9876',
		   proxy_host  => 'proxy.company.com',
		   proxy_port  => '8080',
		   proxy_user  => 'jrandom',
		   proxy_pass  => 's3kr3t',
		   proxy_agent => 'Mozilla/4.04 (X11; I; SunOS 5.4 sun4m)',
	       },
	   );
	   $proxy->register();

	   Net::Proxy->mainloop();

DESCRIPTION

       "Net::Proxy::Connecter::connect_ssl" is a "Net::Proxy::Connector" that uses the HTTP CONNECT method to ask the proxy to create a tunnel to
       an outside server. The data is then encrypted using SSL.

       Obviously, you'll need a server that understands SSL (or a proxy using "Net::Proxy::Connector::ssl") at the other end.

       This connector is only an "out" connector.

       In addition to the options listed below, this connector accepts all "SSL_..." options to "IO::Socket::SSL". They are transparently passed
       through to the appropriate "IO::Socket::SSL" methods when upgrading the socket to SSL.

CONNECTOR OPTIONS

       "Net::Proxy::Connector::connect" accepts the following options:

"out"
       o   host

	   The destination host.

       o   port

	   The destination port.

       o   proxy_host

	   The web proxy name or address.

       o   proxy_port

	   The web proxy port.

       o   proxy_user

	   The authentication username for the proxy.

       o   proxy_pass

	   The authentication password for the proxy.

       o   proxy_agent

	   The user-agent string to use when connecting to the proxy.

AUTHOR

       Philippe 'BooK' Bruhat, "<book@cpan.org>".

HISTORY

       Because "Net::Proxy" blocks when it tries to connect to itself, it wasn't possible to pass an SSL-encrypted connection through a proxy with
       a single script: you needed one for the SSL encapsulation, and another one for bypassing the proxy with the "CONNECT" HTTP method.

       See "Net::Proxy::Connector::connect" and "Net::Proxy::Connector::ssl" for details.

COPYRIGHT

       Copyright 2007 Philippe 'BooK' Bruhat, All Rights Reserved.

LICENSE

       This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.10.1							    2009-10-18				   Net::Proxy::Connector::connect_ssl(3pm)

Check Out this Related Man Page

Net::Proxy::Connector::ssl(3pm) 			User Contributed Perl Documentation			   Net::Proxy::Connector::ssl(3pm)

NAME

       Net::Proxy::Connector::ssl - SSL Net::Proxy connector

DESCRIPTION

       "Net::Proxy::Connecter::ssl" is a "Net::Proxy::Connector" that can manage SSL connections (thanks to "IO::Socket::SSL").

       By default, this connector creates SSL sockets. You will need to subclass it to create "smarter" connectors than can upgrade their
       connections to SSL.

       In addition to the options listed below, this connector accepts all "SSL_..." options to "IO::Socket::SSL". They are transparently passed
       through to the appropriate "IO::Socket::SSL" methods when needed.

CONNECTOR OPTIONS

       The connector accept the following options:

   "in"
       o   host

	   The listening address. If not given, the default is "localhost".

       o   port

	   The listening port.

       o   start_cleartext

	   If true, the connection will start in cleartext.  It is possible to upgrade a socket to using SSL with the "upgrade_SSL()" method.

   "out"
       o   host

	   The listening address. If not given, the default is "localhost".

       o   port

	   The listening port.

       o   start_cleartext

	   If true, the connection will start in cleartext.  It is possible to upgrade a socket to using SSL with the "upgrade_SSL()" method.

METHODS

       The "Net::Proxy::Connector::ssl" connector has an extra method:

       upgrade_SSL( $sock )
	   This method will upgrade a cleartext socket to SSL.	If the socket is already in SSL, it will "carp()".

CREATING A SELF-SIGNED CERTIFICATE
       I tend to forget this information, and the openssl documentation doesn't make this any clearer, so here are the most basic commands needed
       to create your own self-signed certificate (courtesy David Morel):

	   $ openssl genrsa -out key.pem 1024
	   $ openssl req -new -key key.pem -x509 -out cert.pem -days 365

       A certificate is required is you want to run a SSL server or a proxy with a "Net::Proxy::Connector::ssl" as its "in" connector.

       Once the key and certificate have been created, you can use them in your parameter list to "Net::Proxy->new()" (they are passed through to
       "IO::Socket::SSL"):

	   Net::Proxy->new(
	       {
		   in => {
		       host	     => '0.0.0.0',
		       port	     => 443,
		       SSL_key_file  => 'key.pem',
		       SSL_cert_file => 'cert.pem',
		   },
		   out => { type => 'tcp', port => '80' }
	       }
	   );

AUTHOR

       Philippe 'BooK' Bruhat, "<book@cpan.org>".

COPYRIGHT

       Copyright 2006 Philippe 'BooK' Bruhat, All Rights Reserved.

LICENSE

       This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.10.1							    2009-10-18					   Net::Proxy::Connector::ssl(3pm)
Man Page