Yes, It seems works. I went InstantSSL, some where called Comodo. They return me 5 files. I only used the mydomain_com.crt to replace the cert= file and kept everything the same as before. Now the browser won't have any complain with https. I will try the client authentication now. I guess because the CA problem, the browser may not return its certificate to Squid to fail the SSL browser authentication. On 7/22/07, Henrik Nordstrom <henrik@xxxxxxxxxxxxxxxxxxx> wrote: > On sön, 2007-07-22 at 20:04 -0400, fulan Peng wrote: > > > I checked many SSL certificate providers. They all deal with Apache or > > other application. No one says about Squid. I am just wondering how to > > make a certificate request to get the company mail me back a good > > certificate so that the browser won't complain any more. > > Just follow whatever guides you find for Apache. It will work for Squid > as well as both uses OpenSSL. > > Regards > Henrik > >
