[squid-users] ssl bump certificate question
Marcus Kool
marcus.kool at urlfilterdb.com
Wed Sep 7 22:06:02 UTC 2016
On 09/07/2016 05:58 PM, Antony Stone wrote:
> On Wednesday 07 September 2016 at 22:55:06, Yuri Voinov wrote:
>
>> 08.09.2016 2:25, erdosain9 пишет:
>>> Hi.
>>> A query. Sslbump is possible without installing the certificate,
>>> machine by machine ???
>>
>> Bump impossible. Splice - possible.
>>
>>> Is there any way that this certificate Squid SUBMIT ??
>>
>> Cant understand question. What do you mean?
>
> I believe he wants a mechanism for squid to be able to provide the fake CA
> certificate to the browser, so that the browser then trusts the fake site
> certificate which is signed with it.
>
> Of course, this is impossible, since any mechanism which allowed this would
> allow the browser to be fooled into trusting any certificate anyone cared to
> wave at it.
>
>
> Antony.
Yes, I also interpret his question like that.
slightly off topic: what is the easiest way to install a cert on a smartphone?
I looked for an app but did not find one.
Marcus
--
int main()
{
printf("42\n");
}
More information about the squid-users
mailing list