If Squid is configured to use the "squid wildcard certificate", does this mean that all of the HTTPS clients have to manually accept this certificate in order to proxy HTTPS through squid? thanks -----Original Message----- From: Denys Fedorysychenko [mailto:nuclearcat@xxxxxxxxxxxxxx] Sent: Thursday, March 18, 2010 11:44 AM To: squid-users@xxxxxxxxxxxxxxx Cc: Sheahan, John Subject: Re: HTTPS Proxy Question On Thursday 18 March 2010 17:36:09 Sheahan, John wrote: > Does Squid actually proxy HTTPS connections or does it just tunnel it? > > The reason I ask is that if you install a Blue Coat proxy, it requires a > certificate to be installed from the Blue Coat box on all HTTPS clients > because they say it is "true" HTTPS proxy and does man in the middle and > Squid does not? > Squid have same mode and same man in the middle mode. keywords "squid wildcard certificate" Probably good to tell them, that they are quite unprofessional, because or they lie, or they just don't know what opensource can offer. Btw this "true" mode is huge security threat in some cases.
