On Thu, 13 Dec 2018 21:03:27 +0100 kovacs janos kovacsjanosfasz@gmail.com wrote:
i understand, and thank you for the explanation, but as i said, i use a program called 'Privoxy', and that is where stunnel would connect after accepting browser requests. Privoxy's accept address is what is given for stunnel as the connect address. Privoxy is a proxy capable of forwarding the requests to the address opened in the browser, so all stunnel would have to do is encrypt and decrypt traffic between the browser and Privoxy. but when i try it, every connection is an endless load, stunnel icon is blue, and no logs are made in Privoxy
Hi,
Because the proxy is to be told where to connect and receives a direct secure handshake.
Even if privoxy could use the SNI to redirect the traffic, you will need to specify a service, in stunnel.conf, for every host you want to connect to, each one with a SNI. You face the same problem.
And, aside this, why Stunnel in the middle? To secure LAN traffic in case is running in a second PC? Privoxy is useless with encrypted data, just transmits from origin to destination: https://www.privoxy.org/faq/misc.html#SSL
Regards.