Hello,
I am currently running the following version of Squid:
Squid Cache: Version 3.2.0.14-20120202-r11500
configure options: '--enable-ssl' '--enable-ssl-crtd'
I configured it so that certs are generated on the fly and I am able to get to
HTTPS websites without getting a certificate warning.
certifícate information you may use ssldump to decode the
> information. I hope this helps.
>
>
> Regards.
>
> -----Mensaje original-
> De: PS [mailto:packetst...@gmail.com]
> Enviado el: viernes, 03 de febrero de 2012 12:11 p.m.
> Para: squid-users@squid-cache.org
Thank you! I'll take a look at ssldump.
On Feb 3, 2012, at 2:08 PM, Alfonso Alejandro Reyes Jimenez wrote:
> Sorry. SSLDUMP is like tcpdump but for ssl, it Works on layer 3 and has
> nothing to do with squid, that what we use.
>
> Regards.
>
>
>
> -M
onso Alejandro Reyes Jimenez"
wrote:
> Sorry. SSLDUMP is like tcpdump but for ssl, it Works on layer 3 and has
> nothing to do with squid, that what we use.
>
> Regards.
>
>
>
> -Mensaje original-
> De: PS [mailto:packetst...@gmail.com]
> Envia
ists
> in a decrypted form is in squids memory. Just think of squid as a bridge
> between two SSL streams.
>
> On Sun, Feb 05, 2012 at 02:12:44PM -0500, PS wrote:
>> I tried using ssldump and tshark and I can't seem to get this working. I am
>> using squid's private
I'm not very familiar with ICAP, but I would think that this could be done via
ICAP since it can be used to send the unencrypted data to an AV server.
Victor Pineiro
On Feb 5, 2012, at 6:39 PM, Henrik Nordström wrote:
> sön 2012-02-05 klockan 17:33 -0600 skrev James R. Leu:
>> If squid is con
h the cache.log, it seemed like squid
should have been running. The cache.log file said "2012/02/08 00:18:58| Squid
is already running! Process ID 1288". I did a "ps -ef | grep squid" and was
not able to find anything. I also did a ps -ef | grep 1288 and no process with
the n
Thanks for the explanation.
Victor Pineiro
Sent from my iPad
On Feb 8, 2012, at 4:32 AM, Amos Jeffries wrote:
> On 8/02/2012 9:37 p.m., PS wrote:
>> Hello!
>>
>> I just wanted to share something interesting that just happened on my squid
>> server.
>>
>
> Hello,
> Is there a way for me to force a server to accept the cipher that I am
> choosing? Below you can see my http_port directive.
>
> http_port 3128 ssl-bump generate-host-certificates=on
> dynamic_cert_mem_cache_size=4MB
> key=/usr/local/squid/ssl_cert/private/squid-rsa-3.2.pem
> cert
I am not sure if this email made it to the list since I did not see any
responses.
On Feb 10, 2012, at 4:33 AM, PS wrote:
>> Hello,
>
>> Is there a way for me to force a server to accept the cipher that I am
>> choosing? Below you can see my http_port directive.
>
Thanks Amos. I will try experimenting with it a bit more.
On Feb 10, 2012, at 8:41 PM, Amos Jeffries wrote:
>
>>>
>>> On Feb 10, 2012, at 4:33 AM, PS wrote:
>>>
>>>>> Hello,
>>>>> Is there a way for me to force a server to accep
I ended up having to disable the Camellia ciphers in Firefox in order to
prevent it from being selected.
Thanks
On Feb 12, 2012, at 7:55 AM, Henrik Nordström wrote:
> fre 2012-02-10 klockan 04:33 -0500 skrev PS:
>
>> It seems like every site that I connect to while using Squid, t
mas wrote:
>>> fre 2012-02-10 klockan 04:33 -0500 skrev PS:
>>>> It seems like every site that I connect to while using Squid, the
>>>> server always chooses Cipher Suite: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
>>>> (0x0084). I'm not sure why. Exactly what
Hello,
I am using Squid 3 with MyDLP.
My settings are as follows:
icap_enable on
icap_io_timeout 30 minutes
icap_preview_enable off
adaptation_send_client_ip on
icap_service service_req reqmod_precache bypass=on
icap://192.168.168.192:1344/dlp
adaptation_access service_req allow all
When I tak
14 matches
Mail list logo
