[squid-users] ssl_crtd breaks after short time

Amos Jeffries squid3 at treenet.co.nz
Tue Jun 2 14:10:09 UTC 2015


On 3/06/2015 1:45 a.m., Klavs Klavsen wrote:
> Thank you Amos.
> 
> I'll build 3.5.5 then..
> 
> any config changes I need to be aware of?

--with-openssl instead of --enable-ssl is the only one that comes to
mind right now. The release notes for 3.4 and 3.5 have the lists.

Amos

> 
> Amos Jeffries wrote on 06/02/2015 03:38 PM:
>> On 2/06/2015 8:33 p.m., Klavs Klavsen wrote:
>>> I've got squid 3.4.12 on centos 7, running with ssl bumping.
>>> options for ssl_crtd in squid.conf: -s /etc/ssl/certs/cache/ -M 4MB
>>> -b 4096
>>>
>>> After a while ssl stops working.
>>
>> This would be one (or two) of the bugs fixed in the 3.4.13 release.
>>
>> NOTE: please ensure you are using the latest version of Squid (today
>> thats 3.5.5) when SSL-bumping. That feature set is still quite volatile
>> and being updated constantly as issues are uncovered both in Squid and
>> in the TLS environment itself.
>>
>> Amos
>>
>> _______________________________________________
>> squid-users mailing list
>> squid-users at lists.squid-cache.org
>> http://lists.squid-cache.org/listinfo/squid-users
>>
> 
> 



More information about the squid-users mailing list