> This is roughly what the inter-tubes usually look like:
>
> browser -> AV ===> router ===> NAT -> Squid ===> Internet
>
In this configuration, chrome gives the error
In
Browser->AV->router->NAT->Inet
Or
Browser->router->NAT(redirect)->squid->Inet
Things work just fine, chrome will trust the
Squid 3.5.2 intercept mode and Avast free antivirus 2015 on windows 7
aren't playing well together. Chrome returns a ca invalid error,
details reveal
its the avast web/mail shield cert that its not being trusted.
Everything works if
I turn the webshield off, or on a very strange note, works fin
While waiting with baited breath for --with-libressl support, I
installed openssl-1.02 on openbsd-5.6 to
get squid to compile, but got this error in the final linking:
MemStore.o(.text+0x4fe0): In function
`MemStore::copyFromShm(StoreEntry&, int, Ipc::StoreMapAnchor const&)':
: undefined refer
So I got squid to intercept http and https traffic, but I get the
following error on any https access
2015/02/23 12:50:15 kid1| clientNegotiateSSL: Error negotiating SSL
connection o
n FD 28: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown
ca (1/0
)
This of course leads to al
Surely
Alan Palmer
DO NOT SPAM
> On Feb 21, 2015, at 20:02, Amos Jeffries wrote:
>
>> On 22/02/2015 1:31 p.m., Eliezer Croitoru wrote:
>> Hey Alan,
>>
>> I am unsure but is this SSL library headers files are compatible with
>> OpenSSL or it would requ
[apalmer]:/data/src/squid-3.5.2# openssl version
LibreSSL 2.0
Alan Palmer
DO NOT SPAM
> On Feb 21, 2015, at 09:27, Amos Jeffries wrote:
>
>> On 22/02/2015 2:03 a.m., Alan Palmer wrote:
>> So I get the following error building squid 3.5.2 on openbsd 5.6-release
>>
So I get the following error building squid 3.5.2 on openbsd 5.6-release
libtool: compile: c++ -DHAVE_CONFIG_H -I../.. -I../../include
-I../../lib -I../
../src -I../../include -I/usr/local/include -I/usr/local/include -Wall
-Wpointer
-arith -Wwrite-strings -Wcomments -Wshadow -pipe -D_REENTRAN
On 2/16/2015 5:45 PM, Amos Jeffries wrote:
Notice how the port details have changed from IPv4-only to IPv6-only.
You are using a split-stack OS where each of the IPv4 and IPv6 ports
needs separate TLS/SSL context. You can set the same settings and load
the same cert file, just have to place th
of "squid -v"?
I am unsure about the akadia tutorial.
Please take a look at:
http://wiki.squid-cache.org/EliezerCroitoru/Drafts/SSLBUMP
It contains some hints on how to create the certificate and contains a
snippet of squid configuration to make a basic ssl-bump work(the echo
command code might not be right)
I am pre
I'm trying to get squid 3.4.11 on openbsd 5.6 to act as a transparent
ssl proxy.
I've rebuilt squid with --enable-ssl-crtd, generated my own self signed
cert (ala http://www.akadia.com/services/ssh_test_certificate.html) and
have the following config lines:
https_port 3127 transparent ssl-bu
10 matches
Mail list logo
