cpt aims to be running in front of any HTTPS server. It forwards all requests that don't call for a "CONNECT .." to the normal HTTPS server. There is no error handling for mistaken requests; they go straight to the default server. A request that doesn't pass the conditions is passed forward too, and the Web server will handle it (with the default error page). Users should be unaware that cpt is running as a proxy.
License: MIT/X Consortium License
Changes:
cpt was not able to drop privileges, because of incorrect order in setgid/setuid.
More...