[squid-users] Problem with certificates and SSLBump
yvoinov at gmail.com
Sat Jun 25 17:40:29 UTC 2016
-----BEGIN PGP SIGNED MESSAGE-----
25.06.2016 23:22, Amos Jeffries пишет:
> On 26/06/2016 4:46 a.m., C. L. Martinez wrote:
>> On Sat 25.Jun'16 at 22:33:56 +0600, Yuri Voinov wrote:
>>> -----BEGIN PGP SIGNED MESSAGE-----
>>> Hash: SHA256
>>> Use search.
>>> Some days agi I've played around with ECDSA certs and drop it due to
>>> extremal incompatibility with clients. Here was this thread.
>> Is this the thread:
> Thats the one that came to my mind when reading your problem description.
> Here is the solution he found to the cert content error:
> YMMV, on the bug 4497 issue. So far no-one has been able to replicate
> the problem Yuri has. But if you do we would certainly like to know that
> in the bug report.
We, in turn, did not find any apparent reason, no satisfactory theory to
explain this bug. It is still present in two of our infrastructures, and
we find more and more sites that can not be opened with a similar error.
The only common place for both problem infrastructures - they utilizes
ISP without IPv6 and haven't IPv6 support itself therefore.
> (Yuri: sorry, I just noticed the captures you provided a week ago. Not
> sure how I missed that. I hope to have the time to look them over later
> today and see if some progress can finally happen on that bug.)
No problem, Amos. We are continue our research also, I hope we can found
as the reason and solution. Together.
> squid-users mailing list
> squid-users at lists.squid-cache.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 2437 bytes
Desc: not available
More information about the squid-users