[SOLVED] squid ca for ssl intersepting



  • Hey All,

    i have squid all working for http interception enabled and would like to do this with ssl but not have to install the untrusted cert on all the pc's at my house. if i buy a ca cert online will that work providing that its signed by a cert preinstalled on pc by default? thawte, verisign etc


  • Banned

    You cannot buy any such certificate (except perhaps if you are Chinese gov or 3letter agency).


  • Banned

    Just imaging you walk into my internet cafee where I purchased such a certificate and I am able to see all your banking transactions including pin etc. - nightmare, isn't it?
    You MUST install Root CA certificate into all your devices if you intend to filter HTTPS. No other way.



  • Thanks


Log in to reply