Debian
ratproxy package

Ratproxy SSL MITM does not work / missing keyfile.pem in Ubuntu package

Bug #544097 reported by Chris Bainbridge
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ratproxy (Debian)
New
Undecided
Unassigned
ratproxy (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: ratproxy

run ratproxy
try to use an SSL site
ratproxy should perform MITM attack
Instead we get an error:

1440:error:02001002:system library:fopen:No such file or directory:bss_file.c:352:fopen('keyfile.pem','r')
1440:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
1440:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:720:
PROGRAM ABORT: certificate load failed [ssl_start(), ssl.c:147]

"dpkg -L ratproxy|grep keyfile.pem" shows that this file does not exist in the Ubuntu package but it exists in the upstream release at http://code.google.com/p/ratproxy/source/browse/trunk/keyfile.pem

SSL MITM does work upstream ( http://ratproxy.googlecode.com/files/ratproxy-1.58.tar.gz ) but the Ubuntu package does not include the necessary SSL certificate.

Related branches

lp:ubuntu/maverick/ratproxy
Revision history for this message
Iustin Pop (iustin) wrote :

Hi,

I've just uploaded 1.58+dsfg-3 to Debian which should fix this issue. I don't know when Ubuntu will pull this in though.

regards,
iustin

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ratproxy - 1.58+dfsg-3

---------------
ratproxy (1.58+dfsg-3) unstable; urgency=low

  * [27c2bfb] Fix SSL proxying by including the ssl certificate
    (LP: #544097)
  * [dca3f0d] Switch to my debian address and remove DM-Upload-
    Allowed.
  * [b399fa3] Standards version 3.8.4 (no changes needed)
 -- Ubuntu Archive Auto-Sync <email address hidden> Sun, 09 May 2010 14:01:32 +0100

Changed in ratproxy (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.