Squid configuration directive sslproxy_cert_sign_hash

Available in: 4   3.5  

History:

Changes to sslproxy_cert_sign_hash in Squid-3.5:

New directive to set the hashing algorithm to use when signing generated certificates.

This directive is not available in the 3.4 version of Squid.

For older versions than 3.3 see the linked pages above

Configuration Details:

Option Name:sslproxy_cert_sign_hash
Replaces:
Requires:--with-openssl
Default Value:none
Suggested Config:

	Sets the hashing algorithm to use when signing generated certificates.
	Valid algorithm names depend on the OpenSSL library used. The following
	names are usually available: sha1, sha256, sha512, and md5. Please see
	your OpenSSL library manual for the available hashes. By default, Squids
	that support this option use sha256 hashes.

	Squid does not forcefully purge cached certificates that were generated
	with an algorithm other than the currently configured one. They remain
	in the cache, subject to the regular cache eviction policy, and become
	useful if the algorithm changes again.

 

Back

 

Introduction

Documentation

Support

Miscellaneous

Web Site Translations

Mirrors