On Wednesday 25 June 2003 08.37, atit jariwala wrote: > Some sites are implementing SSL on non-standard SSL Port > So squid's this behaviour is creating problem in surfing such > site. I am planning to allow CONNECT on non-standard SSL Port as > well but before that i want to know the reasons for default DENY > action.
To protect from abuse of the proxy to connect to other services like SMTP/IRC/whatever... CONNECT opens a full duplex TCP transport tunnel via the proxy. It is better if you just extend the ACL with the ports of troublesome sites. Regards Henrikm
