Re: [squid-users] Q: squid in the middle SSL-bump configuration

From: Will Roberts <ironwill42_at_gmail.com>
Date: Thu, 20 Oct 2011 19:18:30 -0400

On 10/20/2011 04:58 PM, John H. Nyhuis wrote:
> Hi, I'd appreciate some squid.conf assistance.
>
> I'm trying to to build a squid in the middle server that will bump a client's http request to https. This is not exposed to the real world; it's to help developers who need to capture and decrypt ssl encrypted web transactions in a dev environment.
>
> For clarification, what I want is:
> -the client connects via http through the squid proxy
> -the proxy converts this to https and forwards the request on to the web server
> -the web server only sees https, and replies via https

John,

I don't believe that's what the ssl-bump feature is designed to do.

http://wiki.squid-cache.org/Features/SslBump

ssl-bump allows you to intercept SSL connections, not convert an HTTP
connection to an HTTPS connection.

--Will
Received on Thu Oct 20 2011 - 23:18:39 MDT

This archive was generated by hypermail 2.2.0 : Fri Oct 21 2011 - 12:00:03 MDT