[squid-users] Problem with certificates and SSLBump
Yuri Voinov
yvoinov at gmail.com
Sat Jun 25 17:40:29 UTC 2016
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
25.06.2016 23:22, Amos Jeffries пишет:
> On 26/06/2016 4:46 a.m., C. L. Martinez wrote:
>> On Sat 25.Jun'16 at 22:33:56 +0600, Yuri Voinov wrote:
>>>
>>> -----BEGIN PGP SIGNED MESSAGE-----
>>> Hash: SHA256
>>>
>>> Use search.
>>>
>>> Some days agi I've played around with ECDSA certs and drop it due to
>>> extremal incompatibility with clients. Here was this thread.
>>>
>>>
>>
>> Is this the thread:
http://marc.info/?l=squid-users&m=146625379320785&w=2?
>>
>
> Thats the one that came to my mind when reading your problem description.
>
> Here is the solution he found to the cert content error:
> <http://marc.info/?l=squid-users&m=146633146001650&w=2>
>
> YMMV, on the bug 4497 issue. So far no-one has been able to replicate
> the problem Yuri has. But if you do we would certainly like to know that
> in the bug report.
We, in turn, did not find any apparent reason, no satisfactory theory to
explain this bug. It is still present in two of our infrastructures, and
we find more and more sites that can not be opened with a similar error.
The only common place for both problem infrastructures - they utilizes
ISP without IPv6 and haven't IPv6 support itself therefore.
>
>
> (Yuri: sorry, I just noticed the captures you provided a week ago. Not
> sure how I missed that. I hope to have the time to look them over later
> today and see if some progress can finally happen on that bug.)
No problem, Amos. We are continue our research also, I hope we can found
as the reason and solution. Together.
>
>
> Amos
>
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJXbsIMAAoJENNXIZxhPexGQJ8H+gK+OAOZTD93LJxyIofSjWnc
QbemENAZPDeAqFx8EKBAfWzt+BBonUsu4OD+TPCIHk4e0UOdpIy4Ig4zhwXi3bbw
7diMhavM8jIThh9uLiBBzr1W0MxHbm+C8BErpw13kdsue4fm3wLVvwXoXzuH6jST
+u1QjNL8JeHeOU9qvL4PuvsnZn8rgkH/eIHfeoMx8VAC9hTAW0ye2x0F3kr+vKgc
teAja3pQT+0wf8gNlN2QZ7shGUyQI/FidI3vFvzxb2D/jwtA7umEhFvjaS0VueUU
BNin9I+VkLBPkmpnYkLc3I4rv6+d1n9L3YUCUcM9Ogti00M5P2FtdjsD/hceQNU=
=vB8W
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x613DEC46.asc
Type: application/pgp-keys
Size: 2437 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20160625/9a60ab04/attachment.key>
More information about the squid-users
mailing list