RE: [squid-users] Reverse proxy with SSL. from Sommariva Graziano on 2002-05-21 (squid-users)

From: Sommariva Graziano <Graziano.Sommariva@dont-contact.us>
Date: Tue, 21 May 2002 17:40:44 +0200

Netscape 3.5 proxy server does it very well.
The problem is the it does not supports new http 1.1 methods....

Best Regards,

Graziano

-----Original Message-----
From: Simon White [mailto:simon@mtds.com]
Sent: Monday, April 08, 2002 2:05 PM
To: 'squid-users@squid-cache.org'
Subject: Re: [squid-users] Reverse proxy with SSL.

08-Apr-02 at 08:01, Barty, Joe (jbarty@daas.dla.mil) wrote :
> I have a server running HTTPS only on port 443, can I configure my Squid
server
> to reverse proxy?

HTTPS cannot be proxied. It is a direct client/server connection due to
the key exchange mechanism inherent in SSL and secure communications.

Proxying would require caching the keys, which is inherently insecure, and
is not allowed by the https protocol, I assume.

-- 
[Simon White. vim/mutt. simon@mtds.com. GIMPS:62.25% see www.mersenne.org]
Not only does Jesus save, but he makes nightly off-site backups.
[Linux user #170823 http://counter.li.org. Home cooked signature rotator.]

Received on Tue May 21 2002 - 09:41:01 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:11 MST