On 22/2/22 9:45 μ.μ., Eliezer Croitoru wrote:
Just To mention that once Squid is not splicing the connection it would have
full control in the URL level.
Exactly.
For many HTTP2 sites the SNI does not provide enough info for
splicing/bumping decision.
The google sites is one of them. You
Mobile: +972-5-28704261
Email: ngtech1...@gmail.com
-Original Message-
From: squid-users On Behalf Of
Amos Jeffries
Sent: Tuesday, February 22, 2022 16:32
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Splice certain SNIs which served by the same IP
On 23/02/22 01:05, Ben
On 23/02/22 01:05, Ben Goz wrote:
By the help of God.
If I'm using the self signed certificate that I created for the ssl
bump, then the browser considers it as the same certificate for any
domain I'm connecting to?
Key thing to remember is that TLS server certificate validates the
; Email: ngtech1...@gmail.com
>
> -Original Message-
> From: squid-users On Behalf
> Of Christos Tsantilas
> Sent: Monday, February 21, 2022 11:41
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] Splice certain SNIs which served by the same IP
>
> Hi
-
From: squid-users On Behalf Of
Christos Tsantilas
Sent: Monday, February 21, 2022 11:41
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Splice certain SNIs which served by the same IP
Hi Ben,
When HTTP/2 is used, requests for two different domains may served using
th
Hi Ben,
When HTTP/2 is used, requests for two different domains may served using
the same TLS connection if both domains are served from the same remote
server and use the same TLS certificate.
There is a description here:
https://daniel.haxx.se/blog/2016/08/18/http2-connection-coalescing/
ngtech1...@gmail.com <mailto:ngtech1...@gmail.com>
From: squid-users On Behalf Of Ben
Goz
Sent: Thursday, February 17, 2022 14:47
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Splice certain SNIs which served by the same IP
By the help of God.
Any insights?
Th
By the help of God.
Any insights?
Thanks,
Ben
בתאריך יום ב׳, 14 בפבר׳ 2022 ב-15:49 מאת Ben Goz <ben.go...@gmail.com
>:
> By the help of God.
>
> Hi,
> Ny squid version is 4.15, using it on tproxy configuration.
>
> I'm using ssl bump to intercept https connection, but I want to splice
>
By the help of God.
Hi,
Ny squid version is 4.15, using it on tproxy configuration.
I'm using ssl bump to intercept https connection, but I want to splice
several domains.
I have a problem that when I'm splicing some google domains eg. youtube.com
then
gmail.com domain also spliced.
I know that
