On 1/03/2012 10:21 p.m., Jan Fischbach wrote:
Hi,
I set up SQUID for SSL interception. ( --enable-ssl --enable-certd).
Intercepting works fine, but the ssl_cerd service doesnt draw back his
dynamic generated certificates in the given directory. What do I have
to do to encypt it? I dont get the priv key for the captured session.
Wireshark also wont accept my self-signed cert witch acts as CA.
By "draw back" do you mean "save/write to"?
The generator saves things to the database as long-term storage and
operates out of a RAM copy for speed and security most of the time.
This feature is still experimental and being extended. For details and
troubleshooting you can contact the developers of it via squid-dev if
you dont get a useful reply here in the next few days (most of the dev
don't follow this mailing list regularly).
Amos
