<html><head></head><body><div class="ydp11362124yahoo-style-wrap" style="font-family:Helvetica Neue, Helvetica, Arial, sans-serif;font-size:16px;"><div><span>Hi all</span></div><div><span>I compiled squid 4.6 with this options:</span></div><div><span><span><pre class="ydp5bd0db7code-java">./configure \
--with-openssl \
--enable-ssl-crtd \
--prefix=/usr \
--enable-linux-netfilter \
--with-netfilter-conntrack \
--exec-prefix=/usr \
--includedir=/usr/include \
--datadir=/usr/share/squid \
--libdir=/usr/lib64 \
--libexecdir=/usr/lib64/squid \
--localstatedir=/<span class="ydp5bd0db7code-keyword">var</span> \
--sysconfdir=/etc/squid/ \
--sharedstatedir=/<span class="ydp5bd0db7code-keyword">var</span>/lib/ \
--with-logdir=/<span class="ydp5bd0db7code-keyword">var</span>/log/squid/ \
--enable-ltdl-convenience \
--enable-http-violations</pre></span></span><span></span><div>And my configurations is:</div><div><span>acl Blk ssl::server_name "/var/squid/blk.list"<br>ssl_bump bump Blk<br>acl urlBlk dstdomain " <span><span>/var/squid/blk.list</span></span>"<br></span><div><span><span><span>reply_header_access Strict-Transport-Security deny all</span></span><br></span></div><div><span><br></span></div><div><span>http_access deny urlBlk</span></div></div><div><span>http_access allow all<br>http_port 0.0.0.0:3128<br>http_port 0.0.0.0:3129 tproxy<br>https_port 3130 tproxy ssl-bump \<br> tls-cert=/etc/squid/ssl/myca.pem \<br> generate-host-certificates=on dynamic_cert_mem_cache_size=20MB<br>sslcrtd_program /usr/lib64/squid/security_file_certgen -s /var/lib/ssl_db -M 20MB<br>sslcrtd_children 10 startup=5 idle=1<br>acl step1 at_step SslBump1<br>ssl_bump peek step1<br>ssl_bump splice all<br>shutdown_lifetime 5 seconds<br>cache deny all<br>cache_mem 0</span><br></div><div><br></div><div><br></div><div>After that i use squid to block https requests, when i try to get blocked https site i get this error in my cache.log:</div><div><br></div></div><div><span>2019/03/18 16:46:11| WARNING: /usr/lib64/squid/security_file_certgen -s /var/lib/ssl_db -M 20MB #Hlpr1 exited</span></div><span>2019/03/18 16:46:11| Too few /usr/lib64/squid/security_file_certgen -s /var/lib/ssl_db -M 20MB processes are running (need 1/10)<br>2019/03/18 16:46:11| Starting new helpers<br>2019/03/18 16:46:11| helperOpenServers: Starting 1/10 'security_file_certgen' processes<br>2019/03/18 16:46:11| "ssl_crtd" helper returned <NULL> reply.<br></span><span></span><div><br></div><div><br></div><div>What is wrong? what am i do?!<br></div></div></body></html>