Hi,
I've installed squid 3.4 STABLE for forward proxying with ssl-bump
(followed Squid Wiki). Everything is fine until client visit https
pages which have bad certificates (ie. seft signed).
My configure to tell Squid bypass those:
acl bypass-ssl dstdomain *.website.com
ssl_bump none bypass-ssl
ssl_bump server-first all
The result is Squid bypasses ACL but still do ssl-bump, and client
still receive generated cert from Squid.
Is this right? I've expected ssl_bump will not terminate ssl by those
directive, If so, what should I do? I highly appreciate your comments.
Thanks,
~Neddy
Received on Wed Dec 11 2013 - 04:14:03 MST
This archive was generated by hypermail 2.2.0 : Wed Dec 11 2013 - 12:00:05 MST