Search squid archive

SSLBUMP Issue with SSL websites

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Dears,
hope you all are doing well
    actually I was following the replies on squid users-mail-list about sslbump issues with showing up some websites inline without images or css style sheet
like https://gmail.com and https://facebook.com  as I have same issue in version squid 3.1.19, I know that when sslbump is enabled it intercept the CONNECT method and modify it  to be GET method that when I used broken sites acl  to exclude them however I see that the method is CONNECT  for those excluded website not Get as all other bumped sites but it still the same result
1341837646.893  45801 x.x.x.x TCP_MISS/200 62017 CONNECT twitter.com:443 - DIRECT/199.59.150.7

acl broken_sites dstdomain .twitter.com
acl broken_sites dstdomain .facebook.com
ssl_bump deny broken_sites
ssl_bump allow all
http_port 192.168.0.1:3128  ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB  cert=/etc/pki/tls/certs/sslintercept.crt key=/etc/pki/tls/certs/sslintercept.key


[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux