[squid-users] Squid 4.11 Howto create SSL Bump certificates with only 3-12 months date of expiry

Alex Rousskov rousskov at measurement-factory.com
Fri Jul 10 13:11:10 UTC 2020


On 6/29/20 11:13 AM, info at schroeffu.ch wrote:

> how can I configure Squid to create SSL Bump Certifications with only
> 3-12 months date of expiry?

See sslproxy_cert_adapt and its setValidAfter/setValidBefore algorithms.
You will need to use the corresponding dates in your fake CA. These
algorithms copy the dates from your fake CA to the generated certificate.

    http://www.squid-cache.org/Doc/config/sslproxy_cert_adapt/

HTH,

Alex.


More information about the squid-users mailing list