<p dir="ltr">Thanks for quick reply, <br>
We don't need ssl bumping, or isn't it possible to configure by another way, without using ssl bumping?</p>
<p dir="ltr">What's about authentication using modern hash algorithms sha256/512?</p>
<p dir="ltr">Anton</p>
<div class="gmail_quote">03 февр. 2015 г. 22:58 пользователь "Yuri Voinov" <<a href="mailto:yvoinov@gmail.com">yvoinov@gmail.com</a>> написал:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
<br>
-----BEGIN PGP SIGNED MESSAGE----- <br>
Hash: SHA1 <br>
<br>
<a href="http://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit" target="_blank">http://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit</a><br>
<br>
04.02.2015 1:03, Anton Radkevich пишет:<br>
<span style="white-space:pre-wrap">><br>
> Hi everyone,<br>
><br>
> Could you please help me with configuration Squid3 as forward
HTTPs proxy?<br>
><br>
> Is it possible to configure it in such way?<br>
><br>
> What we do need is a fully encrypted HTTPS forward proxy that
can handle HTTP or HTTPS connection AND uses authentication.<br>
><br>
> so just to be clear the connection flow will look like:<br>
><br>
> browser <Encrypted Tunnel> Server <HTTP or HTTPS
connection> Destination<br>
><br>
> where <Encrypted Tunnel> is probably some form of HTTPS
connection for support with the browser PAC<br>
><br>
> Also, for client auth, can we used more "modern" hashing
algorithms like sha256/512? md5 is old and collision prone at this
point.<br>
><br>
> Thank you in advance!<br>
><br>
><br>
><br>
> _______________________________________________<br>
> squid-users mailing list<br>
> <a href="mailto:squid-users@lists.squid-cache.org" target="_blank">squid-users@lists.squid-cache.org</a><br>
> <a href="http://lists.squid-cache.org/listinfo/squid-users" target="_blank">http://lists.squid-cache.org/listinfo/squid-users</a></span><br>
<br>
-----BEGIN PGP SIGNATURE-----
<br>
Version: GnuPG v2
<br>
<br>
iQEcBAEBAgAGBQJU0ShIAAoJENNXIZxhPexGUg8H/3BGE1zXXDB5I8FxQPzEZVws
<br>
rq5MrxRoA0SjMkwOsNkmRaKkIJpiC6GsMVvkxoFgy4K3S/d5OhPd5TC6wlQk6xvf
<br>
5gOBArogKLZ/iOJiRR3cNvxsnUpjxTpZwRq6PXbTxd7u0M9NxtONva5bIkUdFJVU
<br>
aeMXZnoWJZJgrE8tcBDqsoDei8gILOT7wC0mTDV3uAJHnu728xy0oRpFq7/Osl/r
<br>
SwNi81p2sjGi/z5VDBrE/4JcfJsDsoIzI/6AIjyw6XdbQRx7QTDD213UJnqt2uQA
<br>
VddSYZp+hL5DQXhun+NSiwhpsgkmDj04hExsaPUXrZokxopOf/EAQ6ilQ2qDZ5c=
<br>
=pMq4
<br>
-----END PGP SIGNATURE-----
<br>
<br>
</div>
<br>_______________________________________________<br>
squid-users mailing list<br>
<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
<a href="http://lists.squid-cache.org/listinfo/squid-users" target="_blank">http://lists.squid-cache.org/listinfo/squid-users</a><br>
<br></blockquote></div>