Re: [squid-users] Alternative to squid to filter HTTPS url path

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Mon, 26 May 2014 19:04:44 +1200

On 23/05/2014 4:59 a.m., Bruno Linhares wrote:
> Hi,
>
> I deploy squid on a project which provides restricted www access to the
> users. Inside a HTTPS page, there's some buttons which opens various
> resources but I need to "block"/deny some of them, When connected, I can see the button URL so if I could put that full URL (or the url path) in an acl, I should be able to deny it.
>
> But I see that squid can't see the url path amongst some other data that
> flows inside the CONNECT tunnel, as described here:
> http://wiki.squid-cache.org/Features/HTTPS
>
> Then, I'm here to ask if anyone can point another software to deal with it, ideally without discarding squid.

See the sections on that HTTPS page entitled "Bumping CONNECT tunnels"
and "Bumping direct SSL/TLS connections".

Amos
Received on Mon May 26 2014 - 07:04:48 MDT

This archive was generated by hypermail 2.2.0 : Mon May 26 2014 - 12:00:06 MDT