enterprise-support team mailing list archive

Thread
Date

[Bug 1294810] [NEW] Please Enable SSL Gatewaying Support

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Kevin Shenk <mailbox@xxxxxxxxxxxxxx>
Date: Wed, 19 Mar 2014 18:43:06 -0000
Reply-to: Bug 1294810 <1294810@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

Many schools and businesses are using Squid as a content filter for
their internal networks.

The current squid package distributed by Ubuntu works great for this,
except that SSL gatewaying support is not enabled, creating a filtering
vulnerability: wherever possible, users can easily switch from the HTTP
to the HTTPS protocol to bypass content filtering.

The workaround is to add two switches at compile time:
       --enable-ssl
       --enable-ssl-crtd

As this seems to simply enable a feature, is there any reason not to
enable these?

SOURCE: https://github.com/ra-at-diladele-com/qlproxy_external/wiki
/Filtering-HTTPS

** Affects: squid3 (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to squid3 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1294810

Title:
  Please Enable SSL Gatewaying Support

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/1294810/+subscriptions

Follow ups

[Bug 1294810] [NEW] Please Enable SSL Gatewaying Support
From: Kevin Shenk, 2014-03-19

References

[Bug 1294810] [NEW] Please Enable SSL Gatewaying Support
From: Kevin Shenk, 2014-03-19