Hello,
I'm contacting you for some help.
I need to deploy a secure proxy based on Squid.
I try to use https_port combined with sslbump. I get an error message about
a bungled line.
The reasons I want to do this :
- secure connection between the client browser and the proxy server, so
using https
On 25/05/20 9:59 pm, ben benml wrote:
> Hello,
>
> I'm contacting you for some help.
> I need to deploy a secure proxy based on Squid.
>
> I try to use https_port combined with sslbump. I get an error message
> about a bungled line.
>
> The reasons I want to do this :
> - secure connection betwe
Hello,
Thank you for your prompt and precise answer.
Well I'm permit myself another question, sorry. If you have an opinion
about securing the authentification without https_port :
With a FreeIPA central users directory, what could be the best way to
secure/protect the authentication process, th
Hi Ben,
I made working just using https_port (without ssl-bump).
I think it's a good way to secure squid authentication.
You can also use some tool (like certbot) to generate and
automatically renew certificates, so you can work with a short period
expiration time.
Hope that helps,
Ronan
On Tue
Hello,
Thank you for your answer. And sorry for my late reply .. .busy on multiple
stuff... you know what it is ;)
I'm totally agree that using https is the best way to secure the
authentication.
But, in case, ssl-bump is mandatory what you be the best (or the less
worst) options to secure authe