Topics tagged under "ssl inspection"

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

I

squid transparent proxy with Cryptographic Accelerator Support ?

Watching Ignoring Scheduled Pinned Locked Moved Cache/Proxy ssl inspection ssl squid
4

0 Votes

4 Posts

820 Views

I

@Dobby_ So
openssl-1.1.1q,1 TLSv1.3 capable SSL and crypto library
ldd /usr/local/sbin/squid| grep ssl
libssl.so.111 => /usr/lib/libssl.so.111 (0x800b6c000)

It seems that squid used openssl 1.1.1 ,the openssl will use QAT, then the squid can use QAT ?
H

in an effort to better fix/set up squid and the github information for others to use, I need some help understanding stuff

Watching Ignoring Scheduled Pinned Locked Moved Cache/Proxy squid mitm ssl inspection explicit proxy transparent
4

0 Votes

4 Posts

945 Views

G

As soon as you have access to the full, decrypted data stream it's most probably possible to cache everything.

But :
The, for example, ccs style sheet file, can have a unique name - and won't be re used ever again, so it will get reloaded anyway.
The file creation date can be set to 'now' so the browser will request a fresh copy, even if the content didn't change at all.
etc etc .

squid transparent proxy with Cryptographic Accelerator Support ?

in an effort to better fix/set up squid and the github information for others to use, I need some help understanding stuff