Displaying 6 results from an estimated 6 matches for "ssl_bump".
2018 Mar 09
3
SELinux breaks Squid's ssl_crtd helper
..._cert/nestor.microlinux.lan.pem \
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
# Emplacement de ssl_crtd et du cache des certificats TLS
sslcrtd_program /usr/lib64/squid/ssl_crtd -s /var/lib/ssl_db -M 4MB
sslcrtd_children 8 startup=1 idle=1
# SSL-Bump
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump bump all
# Taille du cache dans la RAM
cache_mem 2048 MB
# Emplacement et taille du cache sur le disque
# cache_dir ufs /var/spool/squid 100 16 256
# Vidage syst?me
coredump_dir /var/spool/squid
# Dur?e de vie des fichiers sans date d'expiration
refresh_pattern ^ftp:...
2016 Feb 04
5
Squid as interception HTTPS proxy under CentOS 7
...low all
request_header_access Title allow all
request_header_access Connection allow all
request_header_access Proxy-Connection allow all
request_header_access User-Agent allow all
request_header_access Cookie allow all
request_header_access All deny all
# SSL Bump Config
always_direct allow all
ssl_bump server-first all
sslproxy_cert_error deny all
sslproxy_flags DONT_VERIFY_PEER
I have tried disabling "sslproxy_cert_error" and "sslproxy_flags" directives, without luck.
Any ideas about what am I doing wrong?
Thanks.
--
Greetings,
C. L. Martinez
2011 Nov 17
2
Squid 3 with SSL Bump on Centos 5.7
I have Centos 5.7 AMD64; is there a way to have Squid 3 with SSLBump feature in Centos 5.7? I appreciate any help on that?
2016 Feb 04
0
Squid as interception HTTPS proxy under CentOS 7
...all
> request_header_access Connection allow all
> request_header_access Proxy-Connection allow all
> request_header_access User-Agent allow all
> request_header_access Cookie allow all
> request_header_access All deny all
>
> # SSL Bump Config
> always_direct allow all
> ssl_bump server-first all
> sslproxy_cert_error deny all
> sslproxy_flags DONT_VERIFY_PEER
>
> I have tried disabling "sslproxy_cert_error" and "sslproxy_flags"
> directives, without luck.
>
> Any ideas about what am I doing wrong?
>
> Thanks.
> --
> G...
2016 Feb 04
0
Squid as interception HTTPS proxy under CentOS 7
...all
> request_header_access Connection allow all
> request_header_access Proxy-Connection allow all
> request_header_access User-Agent allow all
> request_header_access Cookie allow all
> request_header_access All deny all
>
> # SSL Bump Config
> always_direct allow all
> ssl_bump server-first all
> sslproxy_cert_error deny all
> sslproxy_flags DONT_VERIFY_PEER
>
> I have tried disabling "sslproxy_cert_error" and "sslproxy_flags" directives, without luck.
>
> Any ideas about what am I doing wrong?
>
> Thanks.
>
Do you hav...
2018 Mar 05
7
Squid and HTTPS interception on CentOS 7 ?
Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>:
>
> Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit :
>> So far, I've only been able to filter HTTP.
>>
>> Do any of you do transparent HTTPS filtering ? Any suggestions,
>> advice, caveats, do's and don'ts ?
>
> After a week of trial and error, transparent HTTPS filtering