Hi
As Google owns the entire food chain (when you use Chrome talking to Youtube) SSL_Bump upsets everything and the browser blocks access detecting the MITM bump.
I am looking at school level protection so I want to avoid installing certs on the clients and create a seamless experience.
I am playing with the restrict.youtube.com feature at the moment, at least this should limit the IP addresses I see in the CONNECT sessions.
Google seem hell bent on SSL on everything, surely it should be the users choice
On 24/02/2016 6:10:21 AM, Alex Samad <alex@xxxxxxxxxxxx> wrote:
Sounds like a controlled at home environment
why not implement ssl bump ?
On 24 February 2016 at 00:40, Chris Horrywrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
> On 2/23/2016 08:39, Antony Stone wrote:
>> On Tuesday 23 February 2016 at 13:57:52, Chris Horry wrote:
>>
>>> On 2/23/2016 00:01, Darren wrote:
>>>> Hi all
>>>>
>>>> AI am putting together a config to allow the kids to access
>>>> selected videos in YouTube from a page of links on a local
>>>> server.
>>>
>>> You might want to look into a web filter like Dan's Guardian
>>> that integrates with Squid.
>>
>> You have a working recipe for getting Dan's Guardian to filter
>> HTTPS?
>>
> Never tried it myself I'm afraid, I took an all or nothing approach to
> filtering YouTube when my kids were smaller.
>
> Chris
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlbMYWQACgkQnAAeGCtMZU6fPgCfWEvdxNrVL0eEqkMuGrsXq1Bl
> xuYAoLRjlJS8drIUvss6Rnfayrm1xc7N
> =NZDF
> -----END PGP SIGNATURE-----
> _______________________________________________
> squid-users mailing list
> squid-users@xxxxxxxxxxxxxxxxxxxxx
> http://lists.squid-cache.org/listinfo/squid-users
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users