[Wget-dev] RFC - adding the possibility to trust the proxy for https

wget-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Wget-dev] RFC - adding the possibility to trust the proxy for https

From:	Davide Baldo
Subject:	[Wget-dev] RFC - adding the possibility to trust the proxy for https
Date:	Wed, 23 Jan 2019 11:59:21 +0000 (UTC)

Hello,

I would like to add an option to wget to allow the possibility to trust the
proxy even for https request, without relying on a CONNECT. 

For examples these are the requests towards a proxy server: 

Current behaviour for plain http: 
 - GET http://www.example.com/archive.tar HTTP/1.1 

Current behaviour for encrypted https, the proxy is only used as a socket 
passthrough:
 - CONNECT www.example.com:443 HTTP/1.1 

Wanted behaviour, (enabled with something similar to --trust-proxy-for-https):
  - GET httpS://www.example.com/archive.tar HTTP/1.1 

This would allow caching on the proxy, mostly for automated builds without 
having to locally mirror all https sources. I would like to hear your opinions
on this proposal, I'm aware this flag may very well "break" the very goal of 
https in certain circumstances but I would like to point out that alternatives 
are either time-consuming or insecure (such as downgrade to http).

Thanks,

[Prev in Thread]

Current Thread

[Next in Thread]

[Wget-dev] RFC - adding the possibility to trust the proxy for https, Davide Baldo <=
- Re: [Wget-dev] RFC - adding the possibility to trust the proxy for https, Darshit Shah, 2019/01/24

Prev by Date: Re: [Wget-dev] wget2 | GSoC 2019 Ideas (#426)
Next by Date: [Wget-dev] wget2 | docs: --no-cache also sets the 'Cache-Control: no-cache' header (!413)
Previous by thread: [Wget-dev] wget2 | GSoC 2019 Ideas (#426)
Next by thread: Re: [Wget-dev] RFC - adding the possibility to trust the proxy for https
Index(es):
- Date
- Thread