[squid-dev] [PATCH] received_encrypted ACL
Tsantilas Christos
chtsanti at users.sourceforge.net
Fri Jul 17 15:13:59 UTC 2015
This patch adds received_encrypted ACL
The new received_encrypted ACL matches transactions where all HTTP
messages were received over TLS or SSL transport connections, including
messages received from ICAP servers.
Some eCAP services receive data from unencrypted sources. Some eCAP
services are "secure", but we assume that all are not "secure" until we
add a configuration option to mark secure eCAP services.
Use case: Sending everything to Secure ICAP services increases
adaptation performance overhead. Folks want to send received_encrypted
transactions and only those transactions to Secure ICAP services.
NOTE: Currently there is not any mechanism to indicate if a cached
object came from secure source or not, so we assume that all hits for
secure requests are secure too.
This is a Measurement Factory project.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: received_encrypted_ACL-t4.patch
Type: text/x-patch
Size: 41558 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-dev/attachments/20150717/d06b82e3/attachment-0001.bin>
More information about the squid-dev
mailing list