I realize that unlike other proprietary MITM appliances, Squid doesn't fiddle with the original client hello. I think this magnifies into the fact that we cannot look at the SubjectCN/SAN in the remote server certificate and then decide whether we want to splice or bump. (peeking at step 2 really restricts our options) Is my understanding correct ? Or is there a way to accomplish this ? Best Regards, Sarfaraz _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
