ok think i have done it
#
acl DiscoverSNIHost at_step SslBump1
acl NoSSLIntercept ssl::server_name_regex -i .microsoft.com
ssl_bump splice NoSSLIntercept
ssl_bump peek DiscoverSNIHost
ssl_bump bump all
#
#URL deny MIME types
acl mimetype rep_mime_type application/octet-stream
http_reply_access den
Hi Amos,
ok, i have found the rule for it
acl DiscoverSNIHost at_step SslBump1
acl NoSSLIntercept ssl::server_name .microsoft.com
ssl_bump peek DiscoverSNIHost
ssl_bump splice NoSSLIntercept
ssl_bump bump all
but the thing is both windows updates and office activation use the exact
same cert fil
On 11/01/20 11:46 am, robert k Wild wrote:
> hi all,
>
> i have added all these lines to my squid config as it wasnt allowing
> office activation
>
> https://wiki.squid-cache.org/SquidFaq/WindowsUpdate
>
> but now its allowing office activation and now windows updates but i
> dont want it to do
hi all,
i have added all these lines to my squid config as it wasnt allowing office
activation
https://wiki.squid-cache.org/SquidFaq/WindowsUpdate
but now its allowing office activation and now windows updates but i dont
want it to do windows updates as this is managed by our WSUS server
what a
