NAME tlsme - TLS/SSL proxy SYNOPSIS tlsme [options] Options: --help brief help message --listen listen on (default 0.0.0.0:443) --backend backend address or path to unix socket (default 127.0.0.1:8080) --backlog backlog size (default 128) --cert_file path to certificate file (may contain a private key too) --key_file path to private key file --cert_password certificate password (promts unless value provided) --method protocol parser to use ("SSLv2" | "SSLv3" | "TLSv1" | "any") --cipher_list list of ciphers to use ("AES:ALL:!aNULL:!eNULL:+RC4:@STRENGTH") --protocol underlying protocol ("raw" | "http") --user drop privileges to user (ID or name) --group drop privileges to group (ID) --log_file path to log file --debug debug mode --daemonize daemonize (--log_file is required) --pid_file PID file When option "cert_file" is omitted default testing certificate is used. DESCRIPTION TLS/SSL proxy in front of the application creates a transparent encryption tunnel. HEADERS When using "http" protocol HTTP headers "X-Forwarded-For" and "X-Forwarded-Proto" are added to the requests with corresponding values.