[squid-users] Redirect after sslbump teminate
yvoinov at gmail.com
Mon Jun 13 10:55:43 UTC 2016
-----BEGIN PGP SIGNED MESSAGE-----
Yes no problem. Signs the certificate of the local web server with root
certificate the proxy, which is already in user's browser - and voila.
13.06.2016 15:01, Antony Stone пишет:
> On Monday 13 June 2016 at 10:51:35, Eng Hooda wrote:
>> Thank You for your response.
>> Using the certificate is something I want to avoid.
>> So I think it's acceptable as it is now.
>> I searched again and found an explanation , copied below FYI.
>> "To serve an HTTP error to an SSL client, Squid has to establish an SSL
>> connection with that client."
> Yes, but the point is that the client originally requested an SSL
> to a particular server, and if it gets a reply (even though it is an SSL
> reply) back from something with a certificate which doesn't match that
> the client will complain, showing a security alert to the user.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 2437 bytes
Desc: not available
More information about the squid-users