This 'feature' is available to anyone running Squid 3.1 or later via the
Finally... there's the full gun - Man In The Middle interception. This uses your proxy to turn 1 SSL session into 2 - with a small gap in between so you can examine the URL and page content. This is VERY powerful. Scary in places. A number of vendors do this - but look for ones who don't store the data, who warn users, and who allow exception sites. This technique basically drops the HTTPS proxy down to being about as well hidden as a normal HTTP one. Even better, our pals the proxy authors aren't really expecting us to be this sophisticated, so they actually obfuscate their intentions even less - making these arguably easier to block. We SmoothWall folk have been doing this only a month - relatively little feedback as yet but seems like fun.