subject:"Re\: \[squid\-users\] A bunch of SSL errors I am not sure why"

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Amos Jeffries

On 19/01/2017 12:53 p.m., Sameh Onaissi wrote: > Hello, Amos… all > > Yuri, thanks for the reply. > > > Amos, > > I added: Thanks to Eliezer) > sslproxy_cert_error allow all > sslproxy_flags DONT_VERIFY_PEER That is a spot-check config to see if TLS is fully broken or if the fix can be done in

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Sameh Onaissi

, 2017 6:06 PM To: squid-users@lists.squid-cache.org Subject: Re: [squid-users] A bunch of SSL errors I am not sure why On 19/01/2017 3:29 a.m., Sameh Onaissi wrote: Hello Eliezer, all Sorry for the late reply. When I configure the browser to access a non intercept port, the errors do not show

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Yuri Voinov

61 > Email: elie...@ngtech.co.il > > > -Original Message- > From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On > Behalf Of Amos Jeffries > Sent: Wednesday, January 18, 2017 6:06 PM > To: squid-users@lists.squid-cache.org > Subject: Re: [squid

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Eliezer Croitoru

-users] A bunch of SSL errors I am not sure why On 19/01/2017 3:29 a.m., Sameh Onaissi wrote: > Hello Eliezer, all > > Sorry for the late reply. > > When I configure the browser to access a non intercept port, the errors do > not show up and the site is accessed without a

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Amos Jeffries

On 19/01/2017 3:29 a.m., Sameh Onaissi wrote: > Hello Eliezer, all > > Sorry for the late reply. > > When I configure the browser to access a non intercept port, the errors do > not show up and the site is accessed without a problem. > > The client machine has the .crt file installed, but still

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-18 Thread Sameh Onaissi

s,rock' '--enable-wccpv2' '--enable-esi' '--enable-ssl-crtd' '--enable-icmp' '--with-aio' '--with-default-user=squid' '--with-filedescriptors=16384' '--with-dl' '--with-openssl' '--with-pthreads&#x

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-15 Thread Eliezer Croitoru

Croitoru Cc: Amos Jeffries ; squid-users@lists.squid-cache.org Subject: Re: [squid-users] A bunch of SSL errors I am not sure why Hello, I assume bypassed are non intercepted? Once the site IP is on the bypass list, it opened without an issue. There are a few other .http://gov.co sites who have

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-14 Thread Amos Jeffries

On 15/01/2017 2:25 p.m., Sameh Onaissi wrote: > Hello, > > I assume bypassed are non intercepted? That depends on whether the bypass is bypassing interception or something else. > Once the site IP is on the bypass list, it opened without an issue. There are a few other .gov.co si

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-14 Thread Sameh Onaissi

-with-default-user=squid' '--with-filedescriptors=16384' '--with-dl' '--with-openssl' '--with-pthreads' '--with-included-ltdl' '--disable-arch-native' '--enable-ecap' '--without-nettle' 'build_alias=x86_64-redhat-lin

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-14 Thread Eliezer Croitoru

protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic -fPIC' 'PKG_CONFIG_PATH=:/usr/lib64/pkgconfig:/usr/share/pkgconfig' --enable-ltdl-convenience When the proxy is defined in the browser. Can you verify if it affects only intercepted connectio

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-13 Thread Amos Jeffries

On 14/01/2017 4:27 a.m., Sameh Onaissi wrote: > Hello Eliezer, all, > > > I removed the cipher and the problem is still there: > > > 2017/01/13 10:20:50 kid1| Error negotiating SSL connection on FD 138: > error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca (1/0) The CA used to

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-13 Thread Sameh Onaissi

Hello Eliezer, all, I removed the cipher and the problem is still there: 2017/01/13 10:20:50 kid1| Error negotiating SSL connection on FD 138: error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca (1/0) 2017/01/13 10:21:05 kid1| Error negotiating SSL connection on FD 191: error:1

Re: [squid-users] A bunch of SSL errors I am not sure why

2017-01-12 Thread Eliezer Croitoru

Try removing: cipher=ECDHE-RSA-RC4-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:DHE-RSA-CAMELLIA128-SHA:AES128-SHA:RC4-SHA:HIGH:!aNULL:!MD5:!ADH From the ssl-bump line and see what happens. http://ngtech.co.il/lmgtfy/ Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

Re: [squid-users] A bunch of SSL errors I am not sure why

13 matches

Site Navigation

Mail list logo

Footer information