[squid-users] Squid 5: server_cert_fingerprint not working fine...
UnveilTech - Support
support at unveiltech.com
Tue Oct 25 16:22:17 UTC 2022
Hello,
Here is the part of our squid.conf on Squid 5 :
...
acl my_cf1_list server_cert_fingerprint '/etc/squid5/CF1.txt'
ssl_bump peek all
ssl_bump terminate my_cf1_list
ssl_bump splice all
...
We're not sure about the ssl_bump keys and options to use here, to be honnest we've already spend hours to find the right way to make it working fine.
Here are some samples from the CF1.txt file:
# dayznews.biz
FB:EC:F7:AE:F4:BD:F4:85:68:C0:81:65:99:BA:7D:D3:FA:F8:51:74
# cdeveloper.cn
94:0A:C0:53:A0:E9:74:CE:91:12:6E:FD:06:57:08:58:B2:A5:76:10
1. Is the server_cert_fingerprint working correctly or are there any bugs with the v5 ?
2. Are the ssl_bump options/order correct ?
Any tips are welcome, thanks in advance...
Best regards,
Bye Fred
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20221025/1922d0fa/attachment-0001.htm>
More information about the squid-users
mailing list