Post Reply 
ProxHTTPSProxyMII: Reloaded
Apr. 09, 2018, 06:38 PM (This post was last modified: Apr. 09, 2018 07:26 PM by vlad_s.)
Post: #196
RE: ProxHTTPSProxyMII: Reloaded
I used the file proposed by you, 1.1.1.1 still does not work.
On account of the browser, what kind of certificate do I need to export? There are three of them on that site (1.1.1.1).
[Image: 2018_04_09_213228.png]

The error that I see:
[Image: 2018_04_09_221507.png]
The file .1.1.1.crt is created in the directory Certs. I understand that there should be 1.1.1.1, and not *.1.1.1?
Add Thank You Quote this message in a reply
Apr. 10, 2018, 06:02 AM
Post: #197
RE: ProxHTTPSProxyMII: Reloaded
(Apr. 09, 2018 06:38 PM)vlad_s Wrote:  The error that I see:

.jpg  error.jpg (Size: 10.08 KB / Downloads: 10)
The file .1.1.1.crt is created in the directory Certs. I understand that there should be 1.1.1.1, and not *.1.1.1?

This appears to be a problem with the cert that ProxHTTPSProxyMII creates.

I didn't see it because I have disabled browser warnings for ssl.
I apologize for my poor memory. Sorry. D'oh!
Add Thank You Quote this message in a reply
Apr. 10, 2018, 04:18 PM
Post: #198
RE: ProxHTTPSProxyMII: Reloaded
(Apr. 10, 2018 06:02 AM)JJoe Wrote:  This appears to be a problem with the cert that ProxHTTPSProxyMII creates.
Ok, I already understood.
Add Thank You Quote this message in a reply
Apr. 14, 2018, 08:37 PM (This post was last modified: Apr. 20, 2018 02:21 AM by JJoe.)
Post: #199
RE: ProxHTTPSProxyMII: Reloaded
(Apr. 09, 2018 06:38 PM)vlad_s Wrote:  I understand that there should be 1.1.1.1, and not *.1.1.1?

In the past, the common name could be an ip address.
I don't remember if a wildcard was allowed in a CN ip address.
I think most of MII's cert problems are cause by a missing SubjectAltNames field.
Regardless...




I have uploaded
ProxHTTPSProxyMII 1.5wip 34cx_freeze5.0.1urllib3v1.2Win32OpenSSL_Light-1_0_2k-1_1_0e.zip, to
https://1fichier.com/?1qa8qglsv6
, 7.03 MB.

Changes:
Added SubjectAltNames support for DNS and IP... No guarantees, warranties, etc., but it appears to work.
Common name will no longer use a leading '*'. This means less code but a larger cert folder.

Notes:
Built with outdated WinXP compatable software. So, may work with WinXP.


About 1fichier:
In the past, free use was supported by pop over and under advertising.
Do not install any of the advertised programs or browser extensions without additional study...

Now, free downloads are throttled and limited to one every 2 hours.
Still good enough for this. Smile!

HTH

Edited to reflect change at 1fichier
Edited to strike download link
Add Thank You Quote this message in a reply
[-] The following 2 users say Thank You to JJoe for this post:
chatterer, Thomas S.
Apr. 18, 2018, 06:29 PM
Post: #200
RE: ProxHTTPSProxyMII: Reloaded
Thanks for this work.
Is it possible for you to offer the py code for download?
I have done little adjustments for my usage with old v1.4 - but i am not able to do such a change.
I can compile my own exe with actual packages (for example cryptography 2.2.2)
Add Thank You Quote this message in a reply
Apr. 19, 2018, 02:16 AM
Post: #201
RE: ProxHTTPSProxyMII: Reloaded
(Apr. 18, 2018 06:29 PM)Thomas S. Wrote:  Is it possible for you to offer the py code for download?

https://www.prxbx.com/forums/showthread.php?tid=2191&pid=19245#pid19245

Try this one, minor mods and edits. It should work.

Have Fun
Add Thank You Quote this message in a reply
[-] The following 1 user says Thank You to JJoe for this post:
Thomas S.
Apr. 19, 2018, 02:34 AM (This post was last modified: Apr. 20, 2018 02:19 AM by JJoe.)
Post: #202
RE: ProxHTTPSProxyMII: Reloaded
ProxHTTPSProxyMII 1.5wip 34cx_freeze5.0.1urllib3v1.2Win32OpenSSL_Light-1_0_2k-1_1_0e.zip

Download link:
https://1fichier.com/?n96fnmk401
7 MB

Changes:
__version__ updated
minor mods and edits. It should still work.

Have Fun

Edited to strike download link
Add Thank You Quote this message in a reply
[-] The following 1 user says Thank You to JJoe for this post:
chatterer
Apr. 19, 2018, 08:13 PM
Post: #203
RE: ProxHTTPSProxyMII: Reloaded
Thanks very much for the code.

For your information:
I have done a first short test, all seams to be good - but https://1.1.1.1 will not work.
I have got a certificate error under IE8 WinXP with the new version and have to load the site "on my own risk":

"The security certificate of this website has been issued for a different address of the website"

If I look (with WinXP certificate manager) in the certificate "1.1.1.1.crt" it list NO CN, so IE8 rejects this.
The field is empty.

It is a little bit useless because the site will not rendered OK in IE8, but for test it is good.

With the old version 1.4 is load without my extra confirmation.
And the certificate ".1.1.1.crt" has the CN *.1.1.1

In the next days I made more tests, may be all other site works.
Add Thank You Quote this message in a reply
Apr. 19, 2018, 11:00 PM (This post was last modified: Apr. 20, 2018 02:15 AM by JJoe.)
Post: #204
RE: ProxHTTPSProxyMII: Reloaded
(Apr. 19, 2018 08:13 PM)Thomas S. Wrote:  If I look (with WinXP certificate manager) in the certificate "1.1.1.1.crt" it list NO CN, so IE8 rejects this.
The field is empty.

Thanks, I didn't notice this was missing.
My browsers on Win7 and Win10 don't care.

I'll try to add the field.

Files updated.


ProxHTTPSProxyMII 1.5wipa 34cx_freeze5.0.1urllib3v1.2Win32OpenSSL_Light-1_0_2k-1_1_0e.zip

Download link:
https://1fichier.com/?0hzpeavdn0
7 MB

https://www.prxbx.com/forums/showthread.php?tid=2191&pid=19245#pid19245

Changes:
Common Name returns
Add Thank You Quote this message in a reply
[-] The following 2 users say Thank You to JJoe for this post:
chatterer, Thomas S.
Apr. 21, 2018, 09:11 PM (This post was last modified: Apr. 21, 2018 09:11 PM by JJoe.)
Post: #205
RE: ProxHTTPSProxyMII: Reloaded
ProxHTTPSProxyMII 1.5wipb 34cx_freeze5.0.1urllib3v1.22Win32OpenSSL_Light-1_0_2o-1_1_0h.zip

Download link https://1fichier.com/?6azh99hfzl
7.01 MB

http://www.prxbx.com/forums/showthread.php?tid=2191&pid=19252#pid19252

Changes:
'*' returns to cert's Subject field due to some hosts using more than the 64 characters that are allowed. Example: 18cfdfd73150f69310ab-4d842a0601d0ae955a714605e7fb6d6f.ssl.cf2.rackcdn.com.
urllib3 updated to v1.22
OpenSSL updated to Win32OpenSSL_Light-1_0_2k-1_1_0e
Add Thank You Quote this message in a reply
[-] The following 3 users say Thank You to JJoe for this post:
chatterer, Thomas S., Styx
Post Reply 


Forum Jump: