[squid-users] Squid and SSL Bumb
Yoinier Hernandez Nieves
yoinier.hn at gmail.com
Tue Jan 9 20:28:37 UTC 2018
I try configure squid 3.5 on CentOS 7 with sslBump.
But I have some problems, the first:
Some HTTPs sites can access, because squid say what I am are not authenticated. And other sites, yes I can access.
I am authenticated.
Thanks.
Yoinier.
Fragment of my squid.conf.
http_port 3128 ssl-bump cert=/etc/squid/ssl_cert/ConAlza.pem generate-host-certificates=on dynamic_cert_mem_cache_size=4MB# options=NO_SSLv3 dhparams=/etc/squid/ssl_cert/dhparam.pem
sslcrtd_program /usr/lib64/squid/ssl_crtd -s /var/lib/ssl_db -M 4MB
sslproxy_options NO_SSLv2,NO_SSLv3,SINGLE_DH_USE
acl step1 at_step SslBump1
acl step2 at_step SslBump2
acl step3 at_step SslBump3
ssl_bump peek step1
ssl_bump bump all
authenticate_ip_ttl 60 seconds
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180109/8225fd5e/attachment.html>
More information about the squid-users
mailing list