[squid-users] Add header to HTTPS requests

Francesco Chemolli gkinkie at gmail.com
Thu May 20 05:45:58 UTC 2021


On Thu, May 20, 2021 at 2:05 AM Aniruddha Gore <agnrie at hotmail.com> wrote:

> Hello folks, I am using Squid as a simple [forward] proxy and was
> wondering if it is feasible and advised to add custom headers to HTTPS
> requests?
>

Hi Ainiruddha,
  feasible, yes. Advised, maybe.


> I think I can achieve it using ssl_bump but I am still teaching myself
> about it. However, it seems to help more with examining HTTPS requests than
> modifying them.
>

That's actually the only way to do it. The whole point of https is to
prevent intermediaries (such as squid) from seeing the contents of the
requests and meddle with them. sslbump breaks that assumption


>
> I also came across a stern warning at
> https://wiki.squid-cache.org/Features/HTTPS and was wondering if what I
> want to do is even advised 🙂
>

It really depends on your context and objectives. For sure it can be pretty
informative, if your objective is to learn how http works to the wire.

-- 
    Francesco
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20210520/7c93dbd0/attachment.htm>


More information about the squid-users mailing list