<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 6/27/18 11:20 PM, Amit Pasari - XS
INFOSOL Inc. USA wrote:<br>
</div>
<blockquote
cite="mid:2862c2cf-4b97-bedf-4a14-8653cb991d37@xsinfosol.com"
type="cite">
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
<div class="moz-cite-prefix">Dear Walter ,<br>
<br>
I use <br>
<br>
sslproxy_cert_sign_hash sha256<br>
<br>
and use a SHA-256 certificate<br>
<br>
The result is still the same . <br>
<br>
"NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM"<br>
<br>
Also one more thing , when i open yahoo.com with any of those
certificates in CHROME , the content of yahoo comes inline i,e
without any CSS etc ... <br>
<br>
One more strange thing i noticed , when i browse using Firefox ,
safari , IE , all URLs are coming in squid/access.log where as
when i use CHROME only few IPs comes in access logs with CONNECT
on 443 .<br>
<br>
I also noticed with using CHROME the below type of requests :<br>
POST
<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://safebrowsing.googleusercontent.com/safebrowsing/clientreport/chrome-certs">http://safebrowsing.googleusercontent.com/safebrowsing/clientreport/chrome-certs</a><br>
<br>
<br>
Amit<br>
<br>
<br>
On 6/26/18 11:25 PM, Amit Pasari - XS INFOSOL Inc. USA wrote:<br>
</div>
<blockquote
cite="mid:076b5e23-3009-9a67-4abd-298bd487891c@xsinfosol.com"
type="cite">
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
<div class="moz-cite-prefix">Let me try the below solution , but
if thats the case it shouldn't work with other browsers as
well , what i think is chrome is either not reading my cert
or rejecting it .<br>
<br>
Unsure . <br>
<br>
Amit<br>
<br>
On 6/26/18 10:38 PM, Walter H. wrote:<br>
</div>
<blockquote cite="mid:5B3272F6.7050500@mathemainzel.info"
type="cite">
<meta content="text/html; charset=utf-8"
http-equiv="Content-Type">
On 26.06.2018 19:03, Amit pasari wrote:
<blockquote
cite="mid:9DF2E539-F1C9-4C5E-B22B-243CCA0D6323@xsinfosol.com"
type="cite">
<meta http-equiv="Context-Type" content="text/html; ">
Dear Walter
<div> </div>
<div>I have tried with both SHA1 and SHA256 cert . </div>
<div><br>
<br>
<div>Sent from my iPhone</div>
<div><br>
On Jun 26, 2018, at 9:43 PM, Walter H. <<a
moz-do-not-send="true"
href="mailto:Walter.H@mathemainzel.info">Walter.H@mathemainzel.info</a>>
wrote:<br>
<br>
</div>
<blockquote type="cite">
<div> On 26.06.2018 17:22, Amit Pasari - XS INFOSOL Inc.
USA wrote:
<blockquote
cite="mid:e0ef9bb7-507c-be47-334c-a1f72be8b0a3@xsinfosol.com"
type="cite">
<p>I am using squid in transparent mode . Everything
working fine in Firefox and IE after i have
imported the certificate in both the browser ,
but in Chrome 67 version on Windows 10 i am facing
the below issue <br>
</p>
<p>NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM<br>
</p>
<p>When i open <a moz-do-not-send="true"
href="https://facebook.com">https://facebook.com</a>
, <a moz-do-not-send="true"
href="https://linkedin.com">https://linkedin.com</a>
etc .<br>
</p>
<p>I am clueless on the same now . <br>
</p>
<p>Amit</p>
</blockquote>
Have you generated a SHA1 or SHA-256 certificate?<br>
<br>
Walter<br>
<br>
</div>
</blockquote>
</div>
</blockquote>
can you try this:<br>
<br>
sslproxy_cert_sign_hash sha256<br>
<br>
and use a SHA-256 certificate<br>
<br>
Walter<br>
</blockquote>
</blockquote>
</blockquote>
<div class="moz-signature">
<div style="width:530px; float:left;"><br>
</div>
</div>
</body>
</html>