note
rowdog
<p>
I believe you could do something like...
</p>
<ul>
<li>Generate a bogus CA.</li>
<li>Install CA root cert in kids' browser.</li>
<li>Have the proxy generate bogus certs and sign with your CA.</li>
<li>Hope the kids don't notice how slow SSL has become.</li>
</ul>
855889
855889