[squid-users] SQUID 4.12 (Debian 10, OpenSSL 1.1.1d) - SSL bump no server helllo
Lukáš Loučanský
loucansky.lukas at kjj.cz
Tue Jun 16 21:36:27 UTC 2020
But - according to
https://github.com/squid-cache/squid/commit/eec67f04490a477d69891c8b05a94bea05e5efbfGREASE
- as unknown extensions is meant to be ignored (?). The same said here
https://groups.google.com/a/chromium.org/forum/#!topic/security-dev/d_f6higCJzcBut
- these information are years old - so I guess squid already does the
right thing.
Anyway - with debug_options ALL,1 83,2:
2020/06/16 23:24:34.831 kid2| 83,2| client_side.cc(3180)
parseTlsHandshake: error on FD 22: check failed: vMajor == 3
exception location: Handshake.cc(119) ParseProtocolVersion
from chrome
2020/06/16 23:24:37.794 kid2| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x562491ae96c0 on FD 69
(192.168.xx.yy:53569)
2020/06/16 23:24:37.845 kid2| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x562490828890 on FD 70
(192.168.xx.yy:53570)
2020/06/16 23:24:37.845 kid2| clientProcessHit: URL mismatch,
'[unknown_URI]' != 'https://www.idnes.cz/'
2020/06/16 23:24:38.007 kid1| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x55e735276ad0 on FD 57
(192.168.xx.yy:53572)
2020/06/16 23:24:38.013 kid2| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x56249117f780 on FD 71
(192.168.xx.yy:53571)
2020/06/16 23:24:38.018 kid1| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x55e730cfb640 on FD 59
(192.168.xx.yy:53573)
2020/06/16 23:24:38.025 kid2| 83,2| client_side.cc(2684)
clientNegotiateSSL: New session 0x562495f16e00 on FD 73
(192.168.xx.yy:53574)
2020/06/16 23:24:38.028 kid2| 83,2| client_side.cc(2645)
clientNegotiateSSL: Session 0x562492e12150 reused on FD 74
(192.168.xx.yy:53576)
2020/06/16 23:24:38.028 kid2| clientProcessHit: URL mismatch,
'[unknown_URI]' != 'https://1gr.cz/js/uni/uni.js?rr=37'
from firefox
LL
More information about the squid-users
mailing list