You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Oracle Linux: Create a Proxy which Intercepts SSL Connections and Injects its own Certificate

edited May 28, 2025 11:24AM in Linux

Applies To:

Oracle Cloud Infrastructure

Oracle Linux 

Goal:

The goal is to create a squid proxy which intercepts ssl connections and injects its own certificate. 

Solution:

  1. Install squid
$ dnf install squid
...
Installed:
  httpd-filesystem-2.4.62-1.0.1.el9_5.2.noarch           libecap-1.0.1-10.el9.x86_64       libtool-ltdl-2.4.6-46.el9.x86_64 squid-7:5.5-14.el9_5.3.x86_64

Complete!

2. Create a openssl configuration file

$ vi openssl.config

$ cat  openssl.config

[ req ]
default_bits        = 4096
distinguished_name  = req_distinguished_name
prompt              = no
string_mask         = utf8only
default_md          = sha256
x509_extensions     = v3_ca

[ req_distinguished_name ]
commonName               = t estproxy03.common.linuxandvirtiad.oraclevcn.com
organizationalUnitName          = Internal
organizationName             = Oracle
localityName             = DUS
stateOrProvinceName           = NRW
countryName               = DE
[alt_names]
DNS.1   = test-proxy03.common.linuxandvirtiad.oraclevcn.com


[ v3_ca ]
subjectAltName = @alt_names
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer
basicConstraints =
Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!