If Squid is configured to use the "squid wildcard certificate", does this mean 
that all of the HTTPS clients have to manually accept this certificate in order 
to proxy HTTPS through squid?

thanks

-----Original Message-----
From: Denys Fedorysychenko [mailto:nuclear...@nuclearcat.com] 
Sent: Thursday, March 18, 2010 11:44 AM
To: squid-users@squid-cache.org
Cc: Sheahan, John
Subject: Re: [squid-users] HTTPS Proxy Question

On Thursday 18 March 2010 17:36:09 Sheahan, John wrote:
> Does Squid actually proxy HTTPS connections or does it just tunnel it?
> 
> The reason I ask is that if you install a Blue Coat proxy, it requires a
>  certificate to be installed from the Blue Coat box on all HTTPS clients
>  because they say it is "true" HTTPS proxy and does man in the middle and
>  Squid does not?
> 

Squid have same mode and same man in the middle mode. 
keywords "squid wildcard certificate"
Probably good to tell them, that they are quite unprofessional, because or 
they lie, or they just don't know what opensource can offer.

Btw this "true" mode is huge security threat in some cases.

Reply via email to