Jorge Bastos wrote:
> Hi there,
> What are the concerns that I need to have to make squid act as a transrent
> proxy on port 443?
> I need to catch the data that is being sent from a website that works under
> https, is it possible? Data
>
> Right now I only use it for standard port 80.
>
Not possible. HTTPS guarantees the client can see 100% of the machines
for itself to the source.
One user has recently pointed out that redirecting HTTPS URL's to a
local domain reverse-proxied by Squid might work though. The client
believes and accepts Squid credentials as its proper destination site
and Squid handles decryption->re-encryption going HTTPS to the remote site.
That is very similar to how SSLBump works with CONNECT requests in 3.1.
But may get past the invalid certificate issues.
Amos
-- Please be using Current Stable Squid 2.7.STABLE6 or 3.0.STABLE14 Current Beta Squid 3.1.0.7Received on Sun Apr 26 2009 - 00:56:36 MDT
This archive was generated by hypermail 2.2.0 : Sun Apr 26 2009 - 12:00:02 MDT