> Since SSL objects are inherently uncachable, you could of course
choose to modify the client policy so these sessions > always go
direct, bypass squid. Personally I wouldn't do that, and I route all
browser traffic through squid and do > not see this problem.
This may be my next step - I will not use proxy for any SSL traffic, and
use the Wensense integration for the firewall to manage the traffic for
https. It does mean an additional server which the ISA setup didn't seem
to require.
Thanks
Legal disclaimer:
The views expressed in this email are, unless otherwise stated, those of the author and not those of the FirstRand Banking Group (Reg. No. 1929/001225/06) or its management. The information in this e-mail is confidential and is intended solely for the addressee. Access to this e-mail by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted in reliance on this, is prohibited and may be unlawful. Whilst all reasonable steps are taken to ensure the accuracy and integrity of information and data transmitted electronically and to preserve the confidentiality thereof, no liability or responsibility whatsoever is accepted if information is, for whatever reason, corrupted or does not reach its intended destination.
RMB Private Bank, a division of FirstRand Bank Limited, is an Authorised Financial Services Provider.
Received on Fri Mar 03 2006 - 05:05:18 MST
This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:03 MST