Squid Https blocking

running · May 17, 2009, 11:21 PM

Hello, i am running Squid/Squidguard with good result. My problem is that is is not blocking Https.
Squid is blocking mail.yahoo.com but it is letting pass https://mail.yahoo.com

I found this tread but no solution
http://forum.pfsense.org/index.php/topic,11174.0.html

Anny help?

mhab12 · May 18, 2009, 2:41 PM

Good find - we're seeing this too. Hopefully someone else can find a solution, it seems like we will just need to include 443 in the transparent redirect in squid.inc. Can someone with pf knowledge help us add that rule?

running · May 30, 2009, 1:53 PM

Any update on this?

cmb · Jun 12, 2009, 4:45 AM

You can't control HTTPS traffic that way (there is no way to see what URL you're going to, it's encrypted). You need to use firewall rules to control HTTPS. The Squid package doesn't do anything with HTTPS, it can't be cached and it can't be controlled by URL because that's all encrypted, so it doesn't touch it.

running · Jun 12, 2009, 4:49 AM

"You need to use firewall rules to control HTTPS"

Can you tell us how ;)

jahonix · Jun 12, 2009, 9:39 AM

If you just want to disallow all HTTPS traffic use a block rule for HTTPS (port: 443).

running · Jun 12, 2009, 1:36 PM

not exactly, if think it is more complicated than that.

If you block 443 people wont be able to go to legitimate site not block by squid.
Esoft seems to be able to do it and i tough that Squid was more powerful solution.