[squid-users] Whatsapp web on Squid
Amos Jeffries
squid3 at treenet.co.nz
Mon Dec 5 14:45:33 UTC 2022
On 6/12/2022 2:07 am, Andrew Wood wrote:
> Hi
>
> Can anyone help me with Whatsapp web and Yahoo mail not working via a
> Squid proxy please?
>
> The only reference I can find online to Whatsapp refers to SSL bumping
> which we are not using. Clients are explicitly configured to send
> HTTPS traffic to Squid on port 3129, but according to the Squid log
> Whatsapp server is responding with 403.
The only way Squid can see what HTTP status the origin server is
responding with is by using SSL-Bump to decrypt the traffic.
If you are seeing 403 in your squid access.log without SSL-Bump that
would the traffic forbidden explicitly by your http_access policy in
squid.conf.
We might be able to help with that, but you will need to first post your
config and the access.log entries for failing transactions you are
trying to solve.
>
> Likewise although Yahoo webmail works, accessing it via IMAP from
> Thunderbird is failing. This seems to be because it uses OAuth2 for
> authentication over port 443 and again Yahoos server responds with 403.
IMAP is a completely different protocol on port 143 (not 443) and should
not be going through Squid. Mail protocols and HTTP have similar enough
on-wire syntax to confuse each others parsers and different enough to
break badly when the messages get relayed/proxied.
HTH
Amos
More information about the squid-users
mailing list