[squid-users] Squid 4.3: SSL Bump fails to send client certificate

Alex Rousskov rousskov at measurement-factory.com
Fri Nov 2 15:02:26 UTC 2018


On 11/2/18 3:47 AM, Sid wrote:

> tls_outgoing_options \
>    default-ca=off \
>    cafile=/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem \
>    options=NO_SSLv3,SINGLE_DH_USE,SINGLE_ECDH_USE \

> Only issue is Squid sends:
> http://squid-web-proxy-cache.1019090.n4.nabble.com/file/t377591/2018-11-02_151705.jpg

> How to make Squid send certificate in it?

I believe I have answered that question in my previous email[1]. Your
current tls_outgoing_options appear to ignore my answer.

Please note that I have not tested whether tls_outgoing_options cert=...
key=.... mentioned in [1] works as it should in your environment, but
Squid documentation implies that it works. If it does not work, you may
want to file a bug report.

Alex.
[1]
http://lists.squid-cache.org/pipermail/squid-users/2018-November/019613.html


More information about the squid-users mailing list