Hello, I ask you about the feasibility of achieving an validation server certificates used during session establishment SSL/TLS in HTTPS at the level of SQUID proxy ? The idea is not to break the SSL session with a man-in-the-middle (ex. SSLBump), but to authenticate (and to authorize) the target with a white or black list of CAs. In other words, realize with Squid, the first validation of the SSL handshake logically made by the client browser on the certificate of server. In advance, thank you and good day. Vince
