Re: [squid-users] Problems with SSL Reverse Proxy and OpenCA Integration

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Tue, 11 Apr 2006 22:41:16 +0200

ons 2006-04-05 klockan 13:33 +0200 skrev H.Padukience:

> --squid.conf--snip--
> https_port 443 cert=/pathto/server.cert key=/pathto/server.key version=1
> defaultsite=testserver clientca=/pathto/cacert.pem protocol=http
> --snap--

I think you also need the ca= option, or place the openca CA cert into
the trusted CA directory used by OpenSSL.

But it is entirely possible there is still bugs in the client
certificate support in Squid. This part is still very experimental.

Regards
Henrik

Received on Tue Apr 11 2006 - 14:41:26 MDT

This archive was generated by hypermail pre-2.1.9 : Mon May 01 2006 - 12:00:02 MDT