[squid-users] Squid Proxy SSL Bump can not retrieve SSL session back to the client?
Amos Jeffries
squid3 at treenet.co.nz
Mon Dec 9 05:12:31 UTC 2019
On 9/12/19 10:41 am, GeorgeShen wrote:
> Hi Amos,
>
> i downloaded the 4.9 latest, and compiled with "./configure
> --with-default-user=proxy --with-openssl --enable-ssl-crtd", not redo the
> openssl and proxy certificate part, start squid with 4.9, still seeing
> failure. Have not debugged in detail.
> Quick question, when compile for the bump usage case, do i need to use the
> with-gnutls option also?
No, GnuTLS is just an alternative to OpenSSL for those where the OpenSSL
license vs GPL incompatibility matters (anyone distributing both OPenSSL
and Squid packages - eg Ubuntu itself).
It still lacks most of the the SSL-Bump features. So eventually you
might be able to choose between them, but right now OpenSSL is needed to
do interception of HTTPS.
Amos
More information about the squid-users
mailing list