Re: [squid-users] SSL between client and backend sever

From: Henrik Nordstrom <hno@dont-contact.us>
Date: 05 Jun 2003 14:22:10 +0200

tor 2003-06-05 klockan 13.06 skrev Clement.Lorvao@cadrus.fr:

> I can already use ssl between the client and Squid. But when I use the
> redirector (squidGuard) which rewrites the requests as
> https://www.mybackend-server.com, I have this error in the cache.log file:
> SSL unknown certificate error 18 in .............

Most likely Squid could not verify the certificate of the backend
server.

See the sslproxy_* directives documented squid.conf.default, or actually
the matching cache_peer flags for the same functions.. most of the
sslproxy_* directives does not have explicit documentation.

> Where can I define the certificate using for the communication between
> Squid and backend servers?

If you want Squid to use a client certificate then see the directives
mentioned above.

This is also true if you want to teach Squid about how to verify the
server certificate, or not...

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
Please consult the Squid FAQ and other available documentation before
asking Squid questions, and use the squid-users mailing-list when no
answer can be found. Private support questions is only answered
for a fee or as part of a commercial Squid support contract.
If you need commercial Squid support or cost effective Squid and
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Thu Jun 05 2003 - 06:22:22 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:16 MST