[squid-users] SSL Bumping CONNECT With A cache_peer
Amos Jeffries
squid3 at treenet.co.nz
Sat Mar 26 09:57:32 UTC 2016
On 26/03/2016 4:29 p.m., Tom Harris wrote:
> On Sun, Jun 28, 2015 at 4:01 AM, Amos Jeffries <squid3 at treenet.co.nz> wrote:
>
>> On 28/06/2015 10:18 p.m., JP wrote:
>>> Hello all.
>>>
>>> I tried reading all the FAQ's and scoured the rest of the internet for
>> any
>>> configuration examples I can find and I have not seen a working solution
>>> for this.
>>
>> Squid does not support does it permit sending the decrypted requests
>> over an insecure channel, even using CONNECT. We are inching very slowly
>> towards support for peer CONNECT tunnels, but not quite there yet.
>>
>> If you want to speed things up please consider getting involved with the
>> development and/or sponsoring someone to do the remaining pieces.
>>
>
> I’m trying to do a parent proxy with SSL bump too. Has this changed at
> all since this answer? Does Squid 4.x change this feature at all?
>
Squid-4 supports sending unknown protocols over a CONNECT to parent
proxies, or splicing TLS via CONNECT to parents. But that is all.
Amos
More information about the squid-users
mailing list