Dear Erick,
Thank you for your answer.
I tried accessing chrome://flags/#tls13-variant but nothing appears. If I search for a flag containing TLS the only one is #enforce-tls13-downgrade. This is my Chrome version:
Version 73.0.3683.75 (Developer Build) built on Debian 9.8, running on Debian 9.13 (64-bit)
It's not a specific website the problem it is all websites using HTTPS.
Best regards,
Mabi
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday, August 13, 2020 2:54 PM, Erick Perez - Quadrian Enterprises <eperez@xxxxxxxxxxxxxxx> wrote:
Just a quick question Mabi,in chrome address bar please type chrome://flags/#tls13-variantwhat tells you about TLS and QUIC?do you have any nonstandard value?By any chance can you share the (potentially) offending website?thanks.On Thu, Aug 13, 2020 at 5:25 AM mabi <mabi@xxxxxxxxxxxxx> wrote:Hello,I am using Squid as transparent proxy for HTTP and HTTPS traffic on an OpenBSD 6.7 firewall. Since I have upgraded from Squid version 4.11 to 4.12 my Chrome browser is not able to visit any HTTPS websites. Firefox continues to work fine.Older versions of Chrome show a ERR_SSL_VERSION_INTERFERENCE error and newer versions of Chrome show a ERR_CONNECTION_REFUSED error.If I revert back to Squid 4.11 Chrome works again. I have not changed anything in my Squid config or any other configuration file of the firewall.I believe this issue might have something to do with the following change introduced in 4.12:2020-05-06 10:09:50 +0300 Christos Tsantilas +199 -28 SslBump: Disable OpenSSL TLSv1.3 support for older TLS traffic (#620)Thank you in advance for your feedback.Best regards,Mabi_______________________________________________squid-users mailing list-----------------------Erick PerezQuadrian Enterprises S.A. - Panama, Republica de PanamaSkype chat: eaperezhWhatsApp IM: +507-6675-5083---------------------
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
