Step 2: Install Squid 4 with HTTPS Decryption

Default version of Squid in Ubuntu 18 LTS repository does not contain necessary compiler switches for HTTPS filtering and SSL Bumping. We will use newer version of Squid recompiled as indicated in article Build Squid 4 on Ubuntu 18/20 LTS.

Navigate to core.ubuntu18 sub folder and run script 02_squid.sh.

#!/bin/bash

# all packages are installed as root
if [[ $EUID -ne 0 ]]; then
   echo "This script must be run as root" 1>&2
   exit 1
fi

# add diladele apt key
wget -qO - http://packages.diladele.com/diladele_pub.asc | sudo apt-key add -

# add new repo
echo "deb http://squid413.diladele.com/ubuntu/ bionic main" \
        > /etc/apt/sources.list.d/squid413.diladele.com.list

# and install
apt-get update && apt-get install -y \
        squid-common \
        squid \
        squidclient \
        libecap3 libecap3-dev

# change the number of default file descriptors
OVERRIDE_DIR=/etc/systemd/system/squid.service.d
OVERRIDE_CNF=$OVERRIDE_DIR/override.conf

mkdir -p $OVERRIDE_DIR

# generate the override file
rm $OVERRIDE_CNF
echo "[Service]"         >> $OVERRIDE_CNF
echo "LimitNOFILE=65535" >> $OVERRIDE_CNF

# and reload the systemd
systemctl daemon-reload

Press Next to continue to Step 3.