When using squid 3.2 beta with ssl-bump and dynamic certificate generation, is it possible to have the generated certificates issued by a trusted CA (trusted on each computer), so that browsers receive neither the "website does not match certificate CN" or "this certificate is self-signed/untrusted" errors? If I specify cert= with a trusted cert in the http_port directive, then browsers complain that the certificate does not match the website.
