Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid3-Dev - Openssl 1.01 implementation

    Scheduled Pinned Locked Moved pfSense Packages
    7 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      darkm00n
      last edited by

      Dear,

      Is there any plans for having the implementation of squid3-dev supporting TLS 1.2 for reverse proxy ?

      There would also be a need to disable secure client renegociations (on https) to comply with ssllabs tests and protect against DOS attacks ?

      Any plan to deliver something this way or any ideas on how to configure the above into pfsense 2.1 ?

      Many thanks in advance.
      Cheerios
      DM

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        Do you know compile/config options to enable it?

        If if can be done via freebsd ports, I can update it.

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • D
          darkm00n
          last edited by

          Hello,
          No ideas unfortunately.
          Maybe one expert here can help ?
          Cheers

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            Setting WITH_OPENSSL_PORT=yes in the build options should do it, I think. That, and adding the openssl port to ports_before.

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • marcellocM
              marcelloc
              last edited by

              @jimp:

              Setting WITH_OPENSSL_PORT=yes in the build options should do it, I think. That, and adding the openssl port to ports_before.

              Thanks Jimp, I'll test it.

              Treinamentos de Elite: http://sys-squad.com

              Help a community developer! ;D

              1 Reply Last reply Reply Quote 0
              • jimpJ
                jimp Rebel Alliance Developer Netgate
                last edited by

                Also note that is only going to be viable on 2.1. 2.0.x has no OpenSSL 1.0.x and installing it via pkg may cause other unintended side effects.

                Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

                Need help fast? Netgate Global Support!

                Do not Chat/PM for help!

                1 Reply Last reply Reply Quote 0
                • marcellocM
                  marcelloc
                  last edited by

                  ok.

                  Treinamentos de Elite: http://sys-squad.com

                  Help a community developer! ;D

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.