You mean squid is going to handle the "get" requests for https?????? Meaning it's terminating SSL, sending the right cert, negotiating a session key with the client, getting the request and fetching the contents based on the "get" request from the right web server on the LAN???? Can you confirm all the above? If so, squid is a big security hole, but I'm sure it's not: http://www.squid-cache.org/Doc/FAQ/FAQ-1.html#ss1.12 Ramin On Fri, Jul 25, 2003 at 08:38:14PM +0200, Garcia Ruiz wrote: > Have a look at Squid proxy. The last releases admit SSL reverse proxying. If > it would be capable of handling different servers your problem would be > solved. You could have it inside of the firewall (but be careful with > security issues). > > Regards. > > BGR
