[squid-users] explicit forward proxy to server requring client authentication

Yuri Voinov yvoinov at gmail.com
Tue May 17 22:07:06 UTC 2016

Hash: SHA256
PS. I read the manual out loud. With an expression. Expensive. :-!:-D

18.05.16 3:11, Robert W Weaver пишет:
> Greetings, squid users and devs,
> I think this is usual, but I can't find examples, and I can't make it
work. :-)
> The issue is I need to connect to a site that requires client
authentication.  Don't want to put the key and cert on each individual
user, so instead want the key and cert on the proxy.
> Diagram:
> User A ---> Squid S ---> Server B
>         ^            ^
>         |            +-- TLS client authentication
>         +-- cleartext okay
> I'm able to bump, but the client authentication to server B isn't
working.  Configured cert and key on S with ssl-bump cert= .. key= ..
but that isn't working.
> Is this not possible?
> --woody
> /-- 
> "I used to wish the universe were fair. Then one day it hit me: What if
> the universe were fair? Then all the awful things that happen to us in
> life, would happen because we deserved them. So now I take great pleasure
> in the general hostility and unfairness of things."
> -- Marcus, on Babylon 5/
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users

Version: GnuPG v2

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20160518/802f324e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x613DEC46.asc
Type: application/pgp-keys
Size: 2437 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20160518/802f324e/attachment.key>

More information about the squid-users mailing list