[squid-users] squid 4.1: is tls-cert same as cert for http_port?
Amos Jeffries
squid3 at treenet.co.nz
Sat Jul 7 17:15:07 UTC 2018
On 08/07/18 03:43, Amish wrote:
> Hello
>
> While evaluating new squid 4.1, I noticed (possibly) "unannounced"
> change in http_port directive.
>
> cert and key options appear to have changed to tls-cert and tls-key. Old
> "cert" option still seem to be working though.
>
> In documentaton, description of tls-cert is too lengthy (and bit
> confusing) while that of cert was just one line.
>
> So I would like to have more clarity if tls-cert is direct replacement
> of cert OR I need to consider some other things too?
>
It has extensions for GnuTLS and to detect common misconfigurations
people were doing with the cert= option.
If you had a working config with cert= then tls-cert= should also work
without changes in OpenSSL builds (and old cert= should also still work).
Amos
More information about the squid-users
mailing list