Problem with cert - Githubissues

AmanoTeam / Kad

A simple HTTP proxy server that forwards all requests through curl-impersonate

GNU Lesser General Public License v3.0

6 stars 1 forks source link

Problem with cert #2

Closed SREstudent closed 2 hours ago

SREstudent commented 5 hours ago

Added kad.crt to trusted store. When attempt to use curl --proxy 'http://192.168.xxx.xxx:4000' --url 'https://example.com', result is like this curl: (51) SSL: certificate subject name 'Kad Root CA' does not match target host name 'example.com'

What could be wrong?

Kartatz commented 4 hours ago

Hi,

The README is outdated regarding this specific information. For websites that require an HTTPS connection, you need to disable SSL certificate validation entirely (adding the Kad Root CA to the trust certificate store is not enough).

For curl, it would look like this:

curl --insecure --proxy 'http://192.168.xxx.xxx:4000' --url 'https://example.com'

SREstudent commented 2 hours ago

Understood.

I think it is possible to generate certificate (with client "trusted" Kad root and the key) for domain, IP served at runtime. And save it on the disk for later reuse. Unfortunately my C++ is very rusty to implement it myself.

Possibly generate "wildcard certificate".