[prev in list] [next in list] [prev in thread] [next in thread]
List: sidewinder
Subject: [Sidewinder] RE: Sidewinder Digest, Vol 13, Issue 4
From: sidewinder () adeptech ! com
Date: 2005-05-11 16:17:31
Message-ID: 190DFDD2F99A65469B4B15D3658C0D2B0103325F () ptc6 ! ponderosatel ! com
[Download RAW message or body]
> -----Original Message-----
> From: sidewinder-request@adeptech.com
> [mailto:sidewinder-request@adeptech.com]
> Sent: Friday, April 29, 2005 9:00 AM
> To: sidewinder@adeptech.com
> Subject: Sidewinder Digest, Vol 13, Issue 4
> Has anyone attempted to use SSO with a Firefox browser? I am
> at 6.1.0.05 HP1-3 -- EM managed HA pair. IE works fine, but
> when I use Firefox, I get the following message: "Could not
> establish an encrypted connection because certificate
> presented by x.x.x.x is invalis or corrupted. Error Code:
> -8102". Any help would be appreciated.
We don't use an SSO solution (I don't trust certificates), but when we
went to enable HTTPS (outbound) we found Squid has issues with SOME
sites. To avoid this I had to come up with an ugly brew of packet
filters and proxy settings. Squid just would NOT work with some sites
due to an extra byte in an HTTPS header somewhere that Internet
Exploder/Mickysoft IIS uses but technically breaks the HTTPS rules
(another wonderful example of Microsoft's ahem, standards based
solutions).
You might do an acat_acls -a -d to see if the proxy is puking on it. In
our case, oddly, it fell through to the deny all rule and we only caught
it with good old tcpdump. Anyway I would try that to see. Hope this
helps
Dan Sichel
Network Engineer
Ponderosa Telephone
daniels@ponderosatel.com (559) 868-6367
_______________________________________________
Sidewinder mailing list
Sidewinder@adeptech.com
http://mail.adeptech.com/mailman/listinfo/sidewinder
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic