On Wed, 04 Jan 2012 15:00:39 +0100, Christian Kasper wrote:
> Hmmm,
>
> i think the description of my problem was not correct.
> I mean, i want to vscan the ssl traffic and maybe
> avoid download of special filetypes in the same step.
> I want to use dansguardian to solve this problem.
>
> Momentary my Client connect to dansquardian, then to squid - sslbumps
> to clamav. All http Traffic will be vscanned and content scanned -
> Fine, but in the case i work with SSL Traffic it only would be
> scanned
> by viruses but not for content. I need to put my dansguardian (or
> maybe something else) behind the squid to get this functionality.
>
> Is this possible ?
Notice how the client connect to DansGuardian. This is because
DansGuardian is a proxy, similar to squid but not the same. The
abilities (or lack) it has in the SSL department are not relevant to
Squid and you need to approach the DansGuardian project developers about
issues you have there.
Squid can pass the decrypted content using ICAP to a content filtering
service as easily as to the AV. So there is likely little need for
DansGuardian to be used at all if you can find an ICAP content filter
that suite your needs.
Amos
Received on Wed Jan 04 2012 - 23:02:47 MST
This archive was generated by hypermail 2.2.0 : Thu Jan 05 2012 - 12:00:02 MST