encrypt connection between squid+browser w/ ssl - possible?

[DawgG]

my employer wants to set up a (semi)public wlan with web-access thru our proxy. i'm worried about security because (with wlan-encryption and all) it will still be possible for clients on the same network segment so sniff all the traffic. with http basically everything is sent in cleartext and on their own computers ppl can just run about any software they like.
i am wondering if it is possible to set up an additional proxy (squid) that uses our standard proxy as parent and encrypts its connections to the wlan-clients with https (for a reverse proxy with a "parent" webserver ist possible, but the client browsers send https-requests to the "pre-proxy's" https-port)
i am almost positive it will not work because the client browsers send plain http-reqs to the "pre-proxy's" https-port which it cannot understand - maybe someone can teach me sth else.

installation of additional software on the clients is not an option; except - maybe - a firefox add-on or sth.
i know the way to go would be ipsec, but tha's not an option, either.

(i know that the users are responsible themselves for what they send over http in a public wlan, but i think it's just better to offer a safe solution to them)
_________________
DUMM KLICKT GUT.

[GNUtoo]

mabe openvpn is a better idea

[manaka]

Have a look at PHProxy (http://sourceforge.net/projects/poxy/). And this Firefox plugin: https://addons.mozilla.org/en-US/firefox/addon/3239.

Not the best solution. But probably the one that requires the minimum client reconfiguration.
_________________
Javier Miqueleiz

"Listen to your heart. It knows all things, because it came from the Soul of the World, and it will one day return there."