Hi, I've installed squid 3.4 STABLE for forward proxying with ssl-bump (followed Squid Wiki). Everything is fine until client visit https pages which have bad certificates (ie. seft signed). My configure to tell Squid bypass those: acl bypass-ssl dstdomain *.website.com ssl_bump none bypass-ssl ssl_bump server-first all The result is Squid bypasses ACL but still do ssl-bump, and client still receive generated cert from Squid. Is this right? I've expected ssl_bump will not terminate ssl by those directive, If so, what should I do? I highly appreciate your comments. Thanks, ~Neddy
