Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 76816 invoked from network); 8 Apr 2009 21:34:19 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 8 Apr 2009 21:34:19 -0000 Received: (qmail 58964 invoked by uid 500); 8 Apr 2009 21:34:15 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 58918 invoked by uid 500); 8 Apr 2009 21:34:15 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 58909 invoked by uid 99); 8 Apr 2009 21:34:15 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 08 Apr 2009 21:34:15 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of joliver@john-oliver.net designates 207.158.59.100 as permitted sender) Received: from [207.158.59.100] (HELO smtp.sdsitehosting.net) (207.158.59.100) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 08 Apr 2009 21:34:07 +0000 Received: from ns.sdsitehosting.net (localhost.localdomain [127.0.0.1]) by smtp.sdsitehosting.net (8.13.8/8.13.8) with ESMTP id n38LXkpi030151 for ; Wed, 8 Apr 2009 14:33:46 -0700 Received: (from joliver@localhost) by ns.sdsitehosting.net (8.13.8/8.13.8/Submit) id n38LXknF030150 for users@httpd.apache.org; Wed, 8 Apr 2009 14:33:46 -0700 X-Authentication-Warning: ns.sdsitehosting.net: joliver set sender to joliver@john-oliver.net using -f Date: Wed, 8 Apr 2009 14:33:46 -0700 From: John Oliver To: users@httpd.apache.org Message-ID: <20090408213346.GC30076@ns.sdsitehosting.net> References: <20090408173744.GA25157@ns.sdsitehosting.net> <1404e5910904081316v7539d27dpe94ef1c4f93cd63b@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1404e5910904081316v7539d27dpe94ef1c4f93cd63b@mail.gmail.com> User-Agent: Mutt/1.4.2.2i X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] "tee" SSL traffic? On Wed, Apr 08, 2009 at 04:16:32PM -0400, Eric Covener wrote: > On Wed, Apr 8, 2009 at 1:37 PM, John Oliver wrote: > > Is it possible for an instance of httpd to basically copy all traffic it > > receives to another instance of httpd on another host? > > No -- You want something much lower-level, like a TCP tunnel or a load > balancer. Apache will always decrypt/re-encrypt if you put it between > a client and an SSL origin server. It would actually be quite OK for httpd to decrypt the traffic first, since it'll be sent to one other host, on a local segment, re-encrypted by a private keypair. -- *********************************************************************** * John Oliver http://www.john-oliver.net/ * * * *********************************************************************** --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org