On 10/05/2016 9:56 p.m., Ralf Hildebrandt wrote: >> Once you know the legal situation look into >> <http://wiki.squid-cache.org/Features/SslPeekAndSplice>. You will also >> need to be using the latest Squid packages (3.5.19 or 4.0.10 today) and >> regularly updating. TLS interception is an arms race situation that is >> constantly changing both the security encryption and the attack methods >> to break into it. > > Does that even work with Chrome (certificate pinning for google sites)? > (just curious) > Maybe. They document that manually inserted CA certs override pinning. But I'm not sure they follow that documented practice 100% of the time. Amos _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
