Displaying 3 results from an estimated 3 matches for "ssl_crtd".
Did you mean:
ssl_cert
2018 Mar 09
3
SELinux breaks Squid's ssl_crtd helper
...ess allow localnet
http_access allow localhost
http_access deny all
# Ports du proxy
http_port 3130
http_port 3128 intercept
https_port 3129 intercept ssl-bump \
cert=/etc/squid/ssl_cert/nestor.microlinux.lan.pem \
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
# Emplacement de ssl_crtd et du cache des certificats TLS
sslcrtd_program /usr/lib64/squid/ssl_crtd -s /var/lib/ssl_db -M 4MB
sslcrtd_children 8 startup=1 idle=1
# SSL-Bump
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump bump all
# Taille du cache dans la RAM
cache_mem 2048 MB
# Emplacement et taille du cache sur...
2018 Mar 10
0
SELinux breaks Squid's ssl_crtd helper
On 03/09/2018 05:18 AM, Nicolas Kovacs wrote:
> Do allow this
> access for now by executing:
> # ausearch -c 'ssl_crtd' --raw | audit2allow -M my-sslcrtd
> # semodule -i my-sslcrtd.pp
>
> Unfortunately the suggested solution doesn't work
Start by running "ausearch -c 'ssl_crtd' --raw" by itself.? Try to
determine whether or not all of the affected files are mentioned in that
o...
2018 Mar 05
7
Squid and HTTPS interception on CentOS 7 ?
Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>:
>
> Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit :
>> So far, I've only been able to filter HTTP.
>>
>> Do any of you do transparent HTTPS filtering ? Any suggestions,
>> advice, caveats, do's and don'ts ?
>
> After a week of trial and error, transparent HTTPS filtering