Please see the "ssl" project on squid.sourceforge.net.
Answers:
*** Standard distribution: ***
1: Only when used as a normal proxy.
2: No
3: No
Squid only supports the CONNECT method for setting up transparent
tunnels for SSL thru a proxy, not SSL. So yes it can proxy SSL requests
when the browser is configured to use the proxy, but only because the
browsers are not using SSL when speaking to the proxy for setting up the
tunnel, only plain HTTP. Once the tunnel is esatblished the browser will
switch to SSL for sending the request to the origin server.
*** "ssl" distribution: ***
1: Only when used as a normal proxy. See 3 for HTTPS->HTTPS gatewaying.
2: Yes, it is supposed to be supported. Not sure about the performance.
3: Not yet. Code for allowing Squid to make SSL connections remains to
be written.
-- Henrik Nordstrom Squid hacker Brian Connolly wrote: > > Is this possible? > > I noticed that the FAQ claims SSL support, but is slightly ambiguous. > Could someone explain in detail the level of SSL support avaiable? > > (1) Does it support HTTP on the front-end and HTTPS on the back-end? [I > assume the answer is yes here.] > > (2) Does it support HTTPS on the front-end and HTTP on the back-end? [I > don't know the answer here.] > > (3) Does it support HTTPS on the front-end and HTTPS on the back-end? > [Again, don't know the answer.] > > Essentially, I'm looking for a proxy solution that will act as an SSL > server (ssl on the front-end), as well as an SSL client (SLL on the > back-end). I want the data to be decrypted at the proxy and then > recrypted on the back-end, giving me two seperate SSL connections. > > Thanks for ur help, > BriReceived on Sat Jul 15 2000 - 16:33:17 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:54:32 MST