We'd like the ability to run a callback script on these events...
SOURCE_REQUEST - Source device has made a request (would include perhaps first 2k of request)
DESTINATION_RESPONSE - Destination device has sent a response (would include full response)
The script should then be able to return one of the following values...
ACCEPT - Continue processing the request/response normally
REPLACE - Replace the contents with rewritten/different content
REJECT - Close the connection not returning anything
This structure would potentially allow implementing...
URL filtering using SOURCE_REQUEST callback
Content filtering using the DESTINATION_RESPONSE callback
Perhaps a new command line option would allow optionally specifying a Lua script handler for these callbacks and each callback would be a different Lua method. The Lua would run in process to avoid the overhead of spinning up a new process.
A few questions then...
1) Is something similar already possible with sslsplit?
2) If we do a pull request to implement this functionality, would it likely be accepted?
3) Any of the contributing developers interested in implementing this? Could set aside a budget for this feature if needed
We'd like the ability to run a callback script on these events...
The script should then be able to return one of the following values...
This structure would potentially allow implementing...
Perhaps a new command line option would allow optionally specifying a Lua script handler for these callbacks and each callback would be a different Lua method. The Lua would run in process to avoid the overhead of spinning up a new process.
A few questions then...
1) Is something similar already possible with sslsplit?
2) If we do a pull request to implement this functionality, would it likely be accepted?
3) Any of the contributing developers interested in implementing this? Could set aside a budget for this feature if needed
Thanks in advance for a reply