On Wed, 26 Jan 2011 20:18:08 +0000, Ming Fu wrote: > Hi, > > > The wiki sample http://wiki.squid-cache.org/Features/SslBump suggested > addi= ng "always_direct allow all". > > This will prevent me from having a peer proxy when sslbump is configured. > > Wonder what is the reason behind the setting. With ssl-bump Squid will hit bugs when un-wrapping back to a CONNECT request or may send raw unencrypted https://... URLs to the peers. Amos