>No. You receive a server cert and the CA chain required to validate that >server cert. > >Stop thinking of certs as belonging to the proxy. It seems to be >confusing you. All 3 certs can be called "the proxy's certs" and yet >none of them is a "proxy cert" in TLS definitions. Amos, but those two certs the client got is the certificate I created for the proxy, and it is defined on the 'ssl-bump' line cert=/usr/local/squid/etc/ssl_cert/myCA.pem. That myCA.pem has a private key and a certificate, the client 'openssl s_client' receives two of the certs are that certificate. I thought this had to be the 'proxy' cert. thanks. - George -- Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
