[squid-users] Chrome 67 Issue with SSL Bump

Walter H. Walter.H at mathemainzel.info
Tue Jun 26 17:08:06 UTC 2018


On 26.06.2018 19:03, Amit pasari wrote:
> Dear Walter
> I have tried with both SHA1 and SHA256 cert .
>
>
> Sent from my iPhone
>
> On Jun 26, 2018, at 9:43 PM, Walter H. <Walter.H at mathemainzel.info 
> <mailto:Walter.H at mathemainzel.info>> wrote:
>
>> On 26.06.2018 17:22, Amit Pasari - XS INFOSOL Inc. USA wrote:
>>>
>>> I am using squid in transparent mode . Everything working fine in 
>>> Firefox and IE after i have imported the certificate in both the 
>>> browser  , but in Chrome 67 version on Windows 10 i am facing the 
>>> below issue
>>>
>>> NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM
>>>
>>> When i open https://facebook.com , https://linkedin.com etc .
>>>
>>> I am clueless on the same now .
>>>
>>> Amit
>>>
>> Have you generated a SHA1 or SHA-256 certificate?
>>
>> Walter
>>
can you try this:

sslproxy_cert_sign_hash sha256

and use a SHA-256  certificate

Walter
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180626/616617b9/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3491 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180626/616617b9/attachment.bin>


More information about the squid-users mailing list