i want to decrypt ssl connection with ssl bump but am still getting
CONNECT gp4.googleusercontent.com:443
CONNECT s.youtube.com:443
CONNECT nps.noproblemppc.com:443
....etc
i used:
./configure --prefix=/usr --exec_prefix=/usr --bindir=/usr/sbin --sbindir=/usr/sbin --libexecdir=/usr/lib/squid --sysconfdir=/etc/squid --localstatedir=/var/spool/squid --datadir=/usr/share/squid --enable-async-io --with-pthreads --enable-storeio=aufs --enable-icap-client --enable-kill-parent-hack --enable-ssl --enable-linux-netfilter --disable-ident-lookups --enable-ssl-crtd --enable-zph-qos --enable-arp-acl --enable-epoll --enable-removal-policies=lru,heap --enable-snmp --enable-referer-log --disable-unlinkd --enable-x-accelerator-vary --enable-dlmalloc --enable-truncate --enable-useragent-log --enable-follow-x-forwarded-for --enable-poll --enable-large-cache-files --with-large-files --with-maxfd=65536 CFLAGS="-Wall -g -O3 -march=native -mtune=native -pipe -DNUMTHREADS=60 -fomit-frame-pointer -fno-strict-aliasing -funroll-loops -ffast-math -fno-exceptions" LDFLAGS="-Wl,-Bsymbolic-functions"
my squid.conf
#PORT HTTP / HTTPS
http_port 8080
http_port 3128 intercept
#ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/etc/squid/myCA.pem
https_port 3129 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/etc/squid/myCA.pem
always_direct allow all
ssl_bump server-first all
sslproxy_cert_error allow all
what i got in access.log is
http://aacable.files.wordpress.com/2...g?w=1024&h=197
but i want it to be like this
http://aacable.files.wordpress.com/2...g?w=1024&h=368
what i mess ?
