Re: [squid-users] Setting up a transparent http and https proxy server using squid 4.6

Hi, Thank you for looking at my question. I dowloaded the squid 4.6 source code from http://ftp.debian.org/debian/pool/main/s/squid/ and selected squid_4.6.orig.tar.gz, squid_4.6-1+deb10u4.debian.tar.xz and squid_4.6-1+deb10u4.dsc. I modified the debian/rules file by adding to

Re: [squid-users] PCI Certification compliance lists

On 1/3/21 10:17 AM, NgTech LTD wrote: > As i noticed in the past it seems that for a good splice and or bump I > need the any-of acl to be used. > Its a bit different then the way squid acls work in general. The ACLs in ssl_bump rules work exactly the same as ACLs in other directives. The

Re: [squid-users] SSL-BUMP 5.0.4 not working as expected

On 1/2/21 3:08 PM, ngtech1...@gmail.com wrote: > I am trying to configure 5.0.4 with sslbump to bump only a set of domains. > * Should I bump all connections with exceptions? > * Should I bump non else then the exceptions? > * Based on server_name regex and/or server_name domains

Re: [squid-users] Setting up a transparent http and https proxy server using squid 4.6

Hey, I am missing a bit of the context, like: Did you self compiled squid? Is it from the OS repository? Squid -v might help a bit to understand what you do have enabled in your Squid. Eliezer Eliezer Croitoru Tech Support Mobile: +972-5-28704261 Email:

Re: [squid-users] Setting up a transparent http and https proxy server using squid 4.6

Hi, After reading more information on this kind of error I captured a few transactions with Wireshark running on the raspberry pi hosting squid 4.6 and opensll 1.1.1d. I captured some transactions when trying to access ebay.fr which is currently not successful with the setup I have with the

Re: [squid-users] PCI Certification compliance lists

I'm trying to figure out what can be done with 5.0.4. I believe there is either a bug or misunderstanding by me what and how things should be done or configured. The first thing is to be able to bump all and add exceptions. The second would be to bump specific sites. As i noticed in the past it

Re: [squid-users] PCI Certification compliance lists

On 4/01/21 3:12 am, ngtech1ltd wrote: I am looking for domains lists that can be used for squid to be PCI Certified. I have read this article: https://www.imperva.com/learn/data-security/pci-dss-certification/ And couple others to try and understand what might a Squid proxy ssl-bump exception

[squid-users] PCI Certification compliance lists

I am looking for domains lists that can be used for squid to be PCI Certified. I have read this article: https://www.imperva.com/learn/data-security/pci-dss-certification/ And couple others to try and understand what might a Squid proxy ssl-bump exception rules should contain. So technically we

Re: [squid-users] SSL-BUMP 5.0.4 not working as expected

Comments bellow -Original Message- From: squid-users On Behalf Of Amos Jeffries Sent: Sunday, January 3, 2021 9:12 AM To: squid-users@lists.squid-cache.org Subject: Re: [squid-users] SSL-BUMP 5.0.4 not working as expected On 3/01/21 9:08 am, ngtech1ltd wrote: > I am trying to configure

[squid-users] SSL-BUMP 5.0.4 not working as expected

Hey Amos, I forgot about the "". I am attaching /etc/squid/ and inside a txt log dump from cache.log of the minute which 2 or more transactions happening. I think I'm doing something wrong in the config but not 100% sure. Link to config and output: