25.03.2018 18:42, Matus UHLAR - fantomas пишет: >> Le 25/03/2018 à 13:08, Yuri a écrit : >>> The problem is not install proxy CA. The problem is identify client >>> has no proxy CA and redirect, and do it only one time. > > On 25.03.18 13:46, Nicolas Kovacs wrote: >> That is exactly the problem. And I have yet to find a solution for that. >> >> Current method is instruct everyone - with a printed paper in the office >> - to connect to proxy.company-name.lan and then get further instructions >> from the page. This works, but an automatic splash page would be more >> elegant. > > impossible and unsafe. The CA must be installed before such splash > page shows Possible. "Safe/Unsafe" should not be discussion when SSL Bump implemented already. > up and in such case the splash page is irelevant. > > If you have windows domain, you can force security policy through it. In enterprise environment with AD, yes. But hardly in service provider's scenarious. -- "C++ seems like a language suitable for firing other people's legs." ***************************** * C++20 : Bug to the future * *****************************
Attachment:
signature.asc
Description: OpenPGP digital signature
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
