I am running a proxy service, thus I can only use TCP passthrough, or users would get certificate warnings.
Unfortunately very little is known in tcp logs, and I want to ensure no illegal activities are being done on the server.
So the question is -
Is it possible to passthrough HTTPS while at the same time decrypting the requests to store http logs?
Thank you.
I believe you would have to decrypt and then re-encrypt the traffic.
@multiplier_x From what I have realized you can’t ‘reencrypt’ SSL without that websites certificate ))
No, you cannot.
The entire use-case of encrypted traffic is so that MITM (like you) can NOT intercept and read its contents. If you could, it would not be possible to use Online Banking, Shopping, or credit cards on the internet.