HTTP 分析器如何工作?

发布于 2024-09-05 11:53:21 字数 329 浏览 12 评论 0原文

晕,我对 http 分析器用来捕获数据的方法很感兴趣。 我想编写一个程序来保存通过基于网络的客户端发送的电子邮件。问题是 https 和 HTTP 分析器解决了它,但我不知道如何解决。

我之前对我的问题得到了一个有趣的答案,但它并没有透露我想知道的那么多。

像 HTTP 分析器这样的程序可以捕获 HTTPS 数据,因为它们插入 它们本身位于 HTTPS 堆栈中。作为一个 结果,他们得到数据后 已生成但在生成之前 加密并放入IP数据包中。这 非常重要。

怎么可能制作?如果您有任何解决此问题的有趣文章,请告诉我。

Halo, i am interest in methods, which http analyzer uses to capture data.
I would like to write program which saves emails sent via web based clients. The problem is https and HTTP Analyzer solves it, but i dont know how.

I got one interesting answer on my question before, but it doesnt reveal as much as i would like to know.

Programs like HTTP Analyzer can catch
the HTTPS data because they insert
themselves in the HTTPS stack. As a
result, they get the data after it's
generated but before it's being
encrypted and put in IP packets. This
is highly non-trivial.

How it is possible to make? If you have any interesting articles solving this issue, please let me know.

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(1

玩物 2024-09-12 11:53:21

HTTPS(以及一般的 SSL)用于阻止第三方(即除服务器或客户端之外的任何东西)读取数据交换。

我想编写一个程序来保存通过基于网络的客户端发送的电子邮件

Web 的客户端无法发送电子邮件 - 他们只能使用 HTTP[S]。

您的意思是您想拦截当前系统的流量吗?在这种情况下,是的(假设您有加密证书并且可以重新配置整个架构)有很多方法可以做到这一点,但是在您能够理解答案之前,您还有很长的路要走。

您的意思是您想编写自己的基于网络的应用程序来发送电子邮件吗?然后忘记 SSL 部分 - 您的代码只会看到未加密的数据 - 这是网络服务器或 SSL 加速器的工作来处理加密/解密。

C.

HTTPS (and SSL in general) is there to stop third parties (i.e. anything other than server or client) from being able to read the data exchange.

I would like to write program which saves emails sent via web based clients

Web based clients can't send emails - they can only talk HTTP[S].

Do you mean you want to intercept traffic from a current system? In which case, yes (assuming you have the encryption certificate and can reconfigure the entire architecture) there are ways to do it, but you've got a very long journey to make before you will be able to understand the answers.

Do you mean you want to write your own web based application for sending emails? Then forget about the SSL part - your code will just see the unencrypted data - its the job of the webserver or SSL accelerator to handle the encryption/decryption.

C.

~没有更多了~
我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
原文