Actions
Bug #9988
closed
Squid - SSL Inspection
Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
Squid
Target version:
-
Start date:
12/20/2019
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:
Description
Hello
with 2.4.5 snapshot, I tried to enable SSL inspection using an OLD CA and a new CA.
The result is:
20.12.2019 12:19:35 FATAL: The /usr/local/libexec/squid/ssl_crtd -s /var/squid/lib/ssl_db -M 4MB -b 2048 helpers are crashing too rapidly, need help! 20.12.2019 12:19:35 WARNING: /usr/local/libexec/squid/ssl_crtd -s /var/squid/lib/ssl_db -M 4MB -b 2048 #Hlpr1 exited 20.12.2019 12:19:35 pinger: Initialising ICMP pinger ... 20.12.2019 12:19:35 ipcCreate: /usr/local/libexec/squid/ssl_crtd: (2) No such file or directory 20.12.2019 12:19:35 ipcCreate: /usr/local/libexec/squid/ssl_crtd: (2) No such file or directory
I verified that /usr/local/libexec/squid/ssl_crtd doesn't exist and also /var/squid/lib/ssl_db
For test, I used the following command to generate the cache table:
/usr/local/libexec/squid/security_file_certgen -c -s /var/squid/lib/ssl_db -M 4MB -b 2048 Initialization SSL db... Done
It generates the DB but after appear:
20.12.2019 12:20:23 Squid Cache (Version 4.9): Terminated abnormally. 01.01.1970 01:00:00 20.12.2019 12:20:23 FATAL: Ipc::Mem::Segment::open failed to shm_open(/var/run/squid/tls_session_cache.shm): (2) No such file or directory
If I stop the Squid service and I restart it, /var/squid/lib/ssl_db /var/squid/lib/ssl_db is cleaned and deleted.
If I disable the SSL MITM, Squid start without errors.
Regards
Updated by Jim Pingle over 4 years ago
- Project changed from pfSense to pfSense Packages
- Category set to Squid
- Status changed from New to Duplicate
- Target version deleted (
2.4.5)
Duplicate of #9652
Actions