Security Issue on Squid

NetVicious

In summary it's a way to bypass the security of httpS certificates within a bug on Squid.

Squid Proxy Cache Security Update Advisory SQUID-2015:1

Incorrect X509 server certificate validation
http://www.squid-cache.org/Advisories/SQUID-2015_1.txt

doktornotor

ROFL. Yah, lets MITM everyone and then scream danger, no certificate validation.

chris4916

;D ;D

Like transparent proxy, MITM is very attractive isn't it?  ;D ;D

BBcan177

https://forum.pfsense.org/index.php?topic=93188.0