[squid-users] Is it possible to send the connection, starting with the CONNECT, to cache-peer?
Yuri Voinov
yvoinov at gmail.com
Mon Sep 21 19:26:08 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
22.09.15 1:23, Antony Stone пишет:
> On Monday 21 September 2015 at 21:20:19, Yuri Voinov wrote:
>
>> 22.09.15 1:15, Amos Jeffries пишет:
>>
>>> HSTS is opt-out. Strip the *response* header on the first contact and it
>>> disappears.
>>
>> I can't. Because first connection can't occur during ISP ban by IP.
>> First contact is never occurs.
>
> If first contact never occurs, HSTS doesn't apply. Client has no clue
that the
> server requires HTTPS.
>
>
> Antony.
>
I think so.
But in access.log I see only HIER_DIRECT CONNECT to torproject.org:443
and no answer from server.
Browser shows ERR_TIME_OUT.
HTTP sites works perfectly via tunnel. But HTTPS-versions is not.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJWAFnQAAoJENNXIZxhPexGT+gH/RzgRrz1uvHMYK3eYYDY1m/X
SEAnGVI6nTBOqoLY9XUlOagAd2ZkG3HEQwprQI+JoL4s0r7ibmpvC7mHhuzfJJqw
qADltTiQKPXPEMr2hcKOfrWUAqUSNNSsMb/RvIWQ8sEAv3q63Gtn+BrGhHpFGp/c
yJ1OUB6BzoOmQeNOeuJOkKODf1VBE+KiXb45JyFFBmMplsOs1+HInPtyo9R/MOyb
SPlGgR9QcLDUVTVG8VGHObHXBRwhgiw64sgnyxq70w/6IkEVweQY5qixk9r+4Lb9
oZBYx1XBanWSAq22W5zo7jaeDdFsiI8gOxX32hljLL9GYcr4pwN15Z2XCA09+24=
=uSS6
-----END PGP SIGNATURE-----
More information about the squid-users
mailing list