Re: [squid-users] Basic questions on transparent/intercept proxy

From: Eliezer Croitoru <eliezer_at_ngtech.co.il>
Date: Sun, 28 Jul 2013 17:30:02 +0300

On 07/28/2013 03:37 PM, csn233 wrote:
> To intercept HTTPS traffic, is SSL-bump a must? Even when I only want
> to record the CONNECT traffic in access.log just like a normal forward
> proxy without decrypting anything?
>
> Is this any different with TPROXY?
>
Indeed SSL-bump is a must..
You will be able to record the CONNECT traffic when using:
"sslbump deny all" like acl.
I do not remember the exact way to do it but it is possible.

Eliezer
Received on Sun Jul 28 2013 - 14:30:26 MDT

This archive was generated by hypermail 2.2.0 : Mon Jul 29 2013 - 12:00:33 MDT