[squid-users] I can't understand the SSL connectios interception concept in explicit mode
Roberto Carna
robertocarna36 at gmail.com
Fri Feb 2 15:12:54 UTC 2018
OK Matus, now I understand....but let me ask one more question:
In explicit mode, is it possible that a given person with Squid
advanced knowledge can see the plain text of the traffic? Because if
this person is the admin of the proxy server, I think it may be a way
to read the plain content of the connection user-remote server.
Thanks a lot again !!!
2018-02-02 12:06 GMT-03:00 Matus UHLAR - fantomas <uhlar at fantomas.sk>:
> On 02.02.18 11:42, Roberto Carna wrote:
>>
>> Dear, I can't understand an important concept:
>>
>> I know that in transparent proxy mode, I have to intercept HTTPS
>> traffic in order to proxy and filter it.
>>
>> But I read in the pfSense's Squid help that in explicit mode there is
>> no need to intercept the HTTPS traffic in order to proxy and filter
>> it....why is this possible? I think the explicit Squid proxy has to
>> intercept traffic in order to porxy and eventually filter it....
>>
>> Please can you explain me this concept?
>
>
> explicit mode is where the client explicitly connect to the proxy and asks
> it to CONNECT to the server. There's no need to intercept the connection
> because the connection is done to the proxy.
> --
> Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
> Warning: I wish NOT to receive e-mail advertising to this address.
> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> WinError #98652: Operation completed successfully.
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
More information about the squid-users
mailing list