Hi,
> ssl-bump is the process of decrypting a CONNECT request. Intercepted
> (aka "transparent") traffic does not contain CONNECT requests.
>
> Squid also does not (yet) re-encrypt when sending traffic via peers.
> This is why we block it instead.
Ok, the re-encryption of such traffic would be needful.
> Thank you for the permission to violate your privacy, posted in a
> permanent public archive no less :)
I think the user should decide if he wants to use it or not.
With squid 3.1.0.15_beta-r1 it seems to work.
http://squid-web-proxy-cache.1019090.n4.nabble.com/squid-3-0-19-transparent-sslbump-td1679105.html
Where can I get this release?
For me it would be easier to use a transparent proxy with ssl support
instead of programming a proxy feature for Android. :-)
greets, Markus.
Received on Tue Sep 06 2011 - 19:50:38 MDT
This archive was generated by hypermail 2.2.0 : Wed Sep 07 2011 - 12:00:04 MDT