Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Squid3-Dev - Openssl 1.01 implementation

    pfSense Packages
    3
    7
    1240
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      darkm00n last edited by

      Dear,

      Is there any plans for having the implementation of squid3-dev supporting TLS 1.2 for reverse proxy ?

      There would also be a need to disable secure client renegociations (on https) to comply with ssllabs tests and protect against DOS attacks ?

      Any plan to deliver something this way or any ideas on how to configure the above into pfsense 2.1 ?

      Many thanks in advance.
      Cheerios
      DM

      1 Reply Last reply Reply Quote 0
      • marcelloc
        marcelloc last edited by

        Do you know compile/config options to enable it?

        If if can be done via freebsd ports, I can update it.

        1 Reply Last reply Reply Quote 0
        • D
          darkm00n last edited by

          Hello,
          No ideas unfortunately.
          Maybe one expert here can help ?
          Cheers

          1 Reply Last reply Reply Quote 0
          • jimp
            jimp Rebel Alliance Developer Netgate last edited by

            Setting WITH_OPENSSL_PORT=yes in the build options should do it, I think. That, and adding the openssl port to ports_before.

            1 Reply Last reply Reply Quote 0
            • marcelloc
              marcelloc last edited by

              @jimp:

              Setting WITH_OPENSSL_PORT=yes in the build options should do it, I think. That, and adding the openssl port to ports_before.

              Thanks Jimp, I'll test it.

              1 Reply Last reply Reply Quote 0
              • jimp
                jimp Rebel Alliance Developer Netgate last edited by

                Also note that is only going to be viable on 2.1. 2.0.x has no OpenSSL 1.0.x and installing it via pkg may cause other unintended side effects.

                1 Reply Last reply Reply Quote 0
                • marcelloc
                  marcelloc last edited by

                  ok.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post

                  Products

                  • Platform Overview
                  • TNSR
                  • pfSense
                  • Appliances

                  Services

                  • Training
                  • Professional Services

                  Support

                  • Subscription Plans
                  • Contact Support
                  • Product Lifecycle
                  • Documentation

                  News

                  • Media Coverage
                  • Press
                  • Events

                  Resources

                  • Blog
                  • FAQ
                  • Find a Partner
                  • Resource Library
                  • Security Information

                  Company

                  • About Us
                  • Careers
                  • Partners
                  • Contact Us
                  • Legal
                  Our Mission

                  We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                  Subscribe to our Newsletter

                  Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                  © 2021 Rubicon Communications, LLC | Privacy Policy