[squid-users] Squid 4.5 and intermediate CA

Alex Rousskov rousskov at measurement-factory.com
Tue Jan 15 19:55:39 UTC 2019


On 1/15/19 8:59 AM, FredB wrote:

> I'm testing squid 4.5 and facing two issues with intermediate CA download
> 
> At first there is no source IP and I don't know how to allow this kind
> of requests with an identification acl

How about using transaction_initiator ACL to identify requests generated
by Squid? This will not solve your
"ssl3_get_server_certificate:certificate verify failed (1/-1/0)"
problem, of course, but at least you would not have to disable
authentication.

Alex.


More information about the squid-users mailing list