Re: [squid-users] Issues with ssl-bump in 3.HEAD

From: Mike <mcsnv96_at_afo.net>
Date: Thu, 12 Jun 2014 21:36:34 -0500

So then next question is how do I know for sure ssl-bump is working? So
far all the certificates match the servers, and I am able to use acls
like 'acl blacklist1 dstdom_regex -i "/etc/blacklists/dom_bl"' to block
domains, even if it is a secure site... but overall I have not figured
out how to tell if ssl-bump is actually working or not.

Thank you

Mike

On 6/12/2014 6:04 PM, Eliezer Croitoru wrote:
> On 06/13/2014 01:04 AM, Mike wrote:
>> So I re-add it for testing:
>>
>> http_port 3128
>> http_port 3129 intercept ssl-bump... blah blah
> You cannot use this and the cache.log will tell you that...
> Try to setup the server like this:
> http_port 3128
> http_port 13129 intercept
> https_port 13130 intercept ssl-bump ...
>
> With just basic settings.
> And still it looks like a look so what are the iptables rules you are
> using?
>
> Eliezer
>
Received on Fri Jun 13 2014 - 02:36:37 MDT

This archive was generated by hypermail 2.2.0 : Fri Jun 13 2014 - 12:00:06 MDT