[squid-users] Squid Proxy SSL Bump can not retrieve SSL session back to the client?

Amos Jeffries squid3 at treenet.co.nz
Mon Dec 9 05:12:31 UTC 2019

On 9/12/19 10:41 am, GeorgeShen wrote:
> Hi Amos,
> i downloaded the 4.9 latest, and compiled with "./configure
> --with-default-user=proxy --with-openssl --enable-ssl-crtd", not redo the
> openssl and proxy certificate part, start squid with 4.9, still seeing
> failure. Have not debugged in detail. 
> Quick question, when compile for the bump usage case, do i need to use the
> with-gnutls option also?

No, GnuTLS is just an alternative to OpenSSL for those where the OpenSSL
license vs GPL incompatibility matters (anyone distributing both OPenSSL
and Squid packages - eg Ubuntu itself).

It still lacks most of the the SSL-Bump features. So eventually you
might be able to choose between them, but right now OpenSSL is needed to
do interception of HTTPS.


More information about the squid-users mailing list