Squid configuration directive sslcrtvalidator_program

Available in: v7   v6   v5   v4   3.5   3.4  

For older versions than v4 see the linked pages above

Configuration Details:

Option Name:sslcrtvalidator_program
Replaces:
Requires:--with-openssl
Default Value:none
Suggested Config:

	Specify the location and options of the executable for ssl_crt_validator
	process.

	Usage:  sslcrtvalidator_program [ttl=...] [cache=n] path ...

	Options:

	cache=bytes
		Limits how much memory Squid can use for caching validator
		responses. The default is 67108864 (i.e. 64 MB).
		Reconfiguration purges any excess entries. To disable caching,
		use cache=0. Currently, cache entry sizes are seriously
		underestimated. Even with that bug, a typical estimate for a
		single cache entry size would be at least a few kilobytes (the
		size of the PEM certificates sent to the validator).

	ttl=<seconds|"infinity">
		Approximately how long Squid may reuse the validator results
		for. The default is 3600 (i.e. 1 hour). Using ttl=infinity
		disables TTL checks. Reconfiguration does not affect TTLs of
		the already cached entries. To disable caching, use zero cache
		size, not zero TTL -- zero TTL allows reuse for the remainder
		of the second when the result was cached.

 

Back

 

Introduction

Documentation

Support

Miscellaneous

Web Site Translations

Mirrors