On 04/25/2013 07:27 AM, alex@xxxxxxxxxxxxx wrote: > I need a solution where the client configuration is not changed Fortunately, such solution does not exist. The only way to bump traffic without client warnings is to make the client trust the Squid signing certificate. For that, you have to change the client configuration (or the configuration of software that the client uses to validate certificates such as OpenSSL). If bumping SSL traffic without client consent or knowledge was possible, SSL would be useless. HTH, Alex.
