[squid-users] Encrypt CONNECT Header

Felipe Polanco felipeapolanco at gmail.com
Tue May 5 14:24:35 UTC 2020


I may be mistaken but I believe you don't need to use ssl-bump with
explicit https proxy.

In your browser settings, use an HTTPS proxy instead of HTTP.

On Tue, May 5, 2020 at 10:19 AM Ryan Le <ryanlele264 at gmail.com> wrote:

> Is there plans to support explicit forward proxy over HTTPS to the proxy
> with
> ssl-bump? We would like to use https_port ssl-bump without using the
> intercept or tproxy option. Clients will use PAC with a HTTPS directive
> rather than a PROXY directive. The goal is to also encrypted the CONNECT
> header which exposes the domain in plain text while it traverses to the
> proxy.
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20200505/b73d5317/attachment.html>


More information about the squid-users mailing list