Re: [squid-users] SSL White List

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Tue, 17 Apr 2007 00:29:17 +0200

tis 2007-04-17 klockan 00:00 +0200 skrev Steven Sporen:

> Is there any method to pickup the common name of the certificate used
> for SSL tunnels? I'd like to be able to restrict users SSL connectivity
> to specific (or deny specific) sites.

Squid does no attempts in parsing the tunneled data. It's just relayed.

Additionally, the common name is not always available. The certificate
is only exchanged on the initial session between the client and server,
not resumed SSL sessions.

Regards
Henrik

Received on Mon Apr 16 2007 - 16:29:22 MDT

This archive was generated by hypermail pre-2.1.9 : Tue May 01 2007 - 12:00:01 MDT