<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<br>
-----BEGIN PGP SIGNED MESSAGE----- <br>
Hash: SHA1 <br>
<br>
Don't think so.<br>
<br>
AFAIK, the firewall-based/external router solution will be
OS/infrastructure-specific. Also, separate subsystem also will be
heavy and KISS-aware. I.e crutch. :)<br>
<br>
So, I think all we need - good fast and scalable helper for external
ACL handling. May be with database. BerkeleyDB, for example.<br>
<br>
BTW, I will prefer to keep ssl_crtd certs also in indexed database.<br>
<br>
So, logically to have all this functionality either in ssl_crtd, or
as advanced helper. This vill be OS-specific aware and can be useful
in any usecases.<br>
<br>
<br>
05.01.2015 16:56, shawn wilson пишет:<br>
<span style="white-space: pre;">><br>
> Wouldn't it be better to have a pipe option (a helper with
persistence - I'm thinking of postfix options here) and a totally
separate project to handle encryption and mitm? If you had
something independent to help, you might be able to detect other
protocols and handle them properly vs different projects having
different levels of bump-ability.<br>
><br>
> Not sure if we just need a better pipe facility and some
script with sslstrip and openssl could handle the rest (I think
that's doable) or if more would be required.<br>
><br>
><br>
><br>
> _______________________________________________<br>
> squid-users mailing list<br>
> <a class="moz-txt-link-abbreviated" href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
> <a class="moz-txt-link-freetext" href="http://lists.squid-cache.org/listinfo/squid-users">http://lists.squid-cache.org/listinfo/squid-users</a></span><br>
<br>
-----BEGIN PGP SIGNATURE-----
<br>
Version: GnuPG v2
<br>
<br>
iQEcBAEBAgAGBQJUqnmZAAoJENNXIZxhPexGB80IAKD+Jw9XP3Dj2EdXUTKQbGrK
<br>
GFNm+IdctED2kRlnNXcVwWCZRHQdTjCn6VFqCnCd2RJ9q4IAR9KjyQrpxydX/q5P
<br>
is5HvuIDGvjLOkyIqLYulWdsnXBBFJ71oA2vqlVjRvMpLJDQfUoCFhbcEk/9TVy0
<br>
yGq6wDCLTl4R8qkCjTaWsLFtS9RVITzDaeSY7n0lmqhgLSddailRhHbu4eJs4PWK
<br>
z0E2dicP60Qq3qPB5eQatE3NM83AuJFQmAoNyMeoN7ovIbJ+32ARbP++H7mUdtTe
<br>
bhY6buAWzv3Rl5ItJA7jqWSEkMdGReTxGyG2VfkYJjN0W/FqNpUvdDB3LwkMdBI=
<br>
=ogt3
<br>
-----END PGP SIGNATURE-----
<br>
<br>
</body>
</html>