On Thu, May 20, 2021 at 2:05 AM Aniruddha Gore <agnrie@xxxxxxxxxxx> wrote:
Hello folks, I am using Squid as a simple [forward] proxy and was wondering if it is feasible and advised to add custom headers to HTTPS requests?
Hi Ainiruddha,
feasible, yes. Advised, maybe.
I think I can achieve it using ssl_bump but I am still teaching myself about it. However, it seems to help more with examining HTTPS requests than modifying them.
That's actually the only way to do it. The whole point of https is to prevent intermediaries (such as squid) from seeing the contents of the requests and meddle with them. sslbump breaks that assumption
I also came across a stern warning at https://wiki.squid-cache.org/Features/HTTPS and was wondering if what I want to do is even advised 🙂
It really depends on your context and objectives. For sure it can be pretty informative, if your objective is to learn how http works to the wire.
Francesco
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
