Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 6 replies
  • Subscribers 0 subscribers
  • Views 1297 views
  • Users 0 members are here
Options
Suggested

[8.281][NOTABUG][CLOSED] Self-signed cert popup with HTTPS proxy?

Jack Daniel
Maybe I've been gone too long, but I distinctly recall that I used to get a popup when browsing to a site with a self-signed cert, and that no longer happens.

HTTP/S proxy is doing SSL/TLS inspection, in transparent mode, no authentication.  Currently on 8.281, but it seems to have been happening for a while.

"Failure to validate cert" error is in the proxy log, but no message is displayed to the user.

Have I broken something, or is this a "feature" because the popups just confused end-users?

[EDIT: It wasn't a popup, it was an option on the "block" page. I now get it in standard mode proxy, but not in transparent. And don't get me started on how Firefox handles certs lately...]


Thanks
Jack
Parents Reply Children
  • 0 in reply to Jack Daniel
    Treating this like a real bug report:

    When transparent HTTPS proxy is active Chrome reports:
    "Error 101 (net::ERR_CONNECTION_RESET): The connection was reset."

    Corresponding log entry:
    2011:11:21-18:29:28 jdasg httpproxy[5859]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="***.***.***.***" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x92f0720" url="https://***.***.***.***" exceptions="" error="Failed to verify server certificate"
Unfiltered HTML