A
A
Astlos1452019-05-15 13:29:34
Squid
Astlos145, 2019-05-15 13:29:34

How to properly configure HSTS in Squid3?

The situation is that Squid3 works with certificates, but when you try to go to google.ru, HSTS works. How to deal with it?
Here is part of the Squid settings
http_port 192.168.0.5:4443 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/etc/squid3/squidCA.pem
key=/etc/squid3/squidCA.pem
connection-auth=off sslflags= NO_DEFAULT_CA
sslproxy_flags DONT_VERIFY_PEER
sslproxy_cert_error allow all
always_direct allow all
ssl_bump client-first all
ssl_bump none all
sslcrtd_program /usr/lib/squid3/ssl_crtd -s /etc/squid3/ssldb/certs -M 4MB

Answer the question

In order to leave comments, you need to log in

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question