Dark Star1

Asked: 2016-10-21 04:51:18 +0800 CST2016-10-21 04:51:18 +0800 CST 2016-10-21 04:51:18 +0800 CST

Is it sufficient to apply ssl to the proxy but not the services being proxied?

I was wondering if enabling SSL on the proxy is enough but not on the services being proxied. Would there be issues from the outside (on client side) when comms are supposed to be https?

1 Answers

Voted

Best Answer

sebastienvg
2016-10-21T05:58:06+08:002016-10-21T05:58:06+08:00
As long as the proxied service is only accessible by the proxy itself there shouldn't be any security issue. All communications between the client and the proxy are secure and the proxy is the only one talking to the service without encryption however if the proxied service is not accessible to the world you are ok.
1

Is it sufficient to apply ssl to the proxy but not the services being proxied?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?