[squid-users] Is there a scalable way in SSL-Bump forwarding client's certificate to server?

GeorgeShen g2011828 at hotmail.com
Wed Dec 11 03:08:49 UTC 2019


I've seen some post saying there is a way to configure the squid proxy to
get the client certificate. But to be scalable (assume it has many https
clients) I'm wonder if the proxy can ask for the client certificate and
modify that certificate in negotiating the session with the server; just
like the proxy dynamically generate the certificate to the client
representing the server. I understand in the current timeline, the proxy is
negotiate with the server before accepting the tls hello from client.

- George

Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html

More information about the squid-users mailing list