On Wed, 5 May 2004, Ivan Doitchinov wrote:
> I am using squid V2.5.STABLE1 on Red Hat linux and I am trying to set up
> an SSL proxy (CONNECT method). It all works fine except that I can't
> figure out how to add my own CA certificate in order to prevent a TLS
> Unkonwn CA fatal error.
???
CA certifcates is not relevant to CONNECT method proxies. These just
provide a transparent tunnel between the client and the requested SSL
server, and is even ignorant to if the tunnel is used for SSL or something
else...
> My squid was compiled with "--enable-ssl" and "with-openssl=/usr/kerberos".
As above.. this is only required if you are configuring an SSL accelerator
/ reverse proxy, where your Squid is to accept https:// requests as if it
is a SSL server via the https_port directive.
This is not a SSL proxy for Internet access.
REgards
Henrik
Received on Thu May 06 2004 - 00:01:28 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Jun 01 2004 - 12:00:01 MDT