RE: [squid-users] Blocking .Exe files

From: Francois Liot <[email protected]>
Date: Tue, 29 Oct 2002 14:11:44 +0100

Ok,

The previous answer does answer ;-)

But I personnally think that such SQUID features don't preserve of
anything,
It's better to add Virus utility to SQUID.

In fact any user (or well written web page) can find some workaround :

Suppose I got
> acl url_xls url_regex -i \.xls$
> http_access deny url_xls

As user (or malicious web link), if I want to download
http://toto/myfile.xls
I just have to download http://toto/myfile.xls?whatIwant=something.jpg

And it will work.......

The real question then is what mean ACL....

Francois Liot

-----Original Message-----
From: mailinglists@belfin.ch [mailto:mailinglists@belfin.ch]
Sent: 29 octobre, 2002 13:54
To: squid-users@squid-cache.org
Subject: RE: [squid-users] Blocking .Exe files

HI

I'm not quite sure but you could try this:

acl local10 src 192.168.10.0/255.255.255.0 WORKTIME
acl local10 url_regex -i \.exe$
http_access allow local10

HTH
Philipp

> -----Original Message-----
> From: NDV [mailto:ndv@bluewin.ch]
> Sent: Tuesday, October 29, 2002 12:57 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] Blocking .Exe files
>
>
>
> Hello,
>
> How do I allow local10 to download .exe files?
>
> Thank you,
>
> NDV
>
> #
> http_port 8080
> visible_hostname prxy.domaine.net
> ftp_user user@domaine.net
> ftp_list_width 32
> icp_port 0
> #
> acl QUERY urlpath_regex cgi-bin \?
> acl WORKTIME time MTWHFA 07:30-19:30
> acl LUNCH time MTWHF 12:30-13.30
> #
> cache_mem 32 MB
> cache_dir ufs /cache 200 16 256
> redirect_rewrites_host_header off
> replacement_policy GDSF
> #
> acl local10 src 192.168.10.0/255.255.255.0 WORKTIME
> acl local20 src 192.168.20.0/255.255.255.0 WORKTIME
> acl local30 src 192.168.30.0/255.255.255.0 WORKTIME
> acl local40 src 192.168.40.0/255.255.255.0 WORKTIME
> acl localhost src 127.0.0.1/255.255.255.255
> acl all src 0.0.0.0/0.0.0.0
> #
> acl Safe_ports port 80 443 20 21 1025-65535
> acl CONNECT method CONNECT
> #
> http_access allow local10
> http_access allow local20
> http_access allow local30
> http_access allow local40
> http_access allow localhost
> #
> http_access deny !Safe_ports
> http_access deny CONNECT
> http_access deny all
> #
> acl url_bat url_regex -i \.bat$
> http_access deny url_bat
> acl url_com url_regex -i \.com$
> http_access deny url_com
> acl url_vbs url_regex -i \.vbs$
> http_access deny url_vbs
> #
> acl url_mp3 url_regex -i \.mp3$
> http_access deny url_mp3
> acl url_mpg url_regex -i \.mpg$
> http_access deny url_mpg
> acl url_mpeg url_regex -i \.mpeg$
> http_access deny url_mpeg
> acl url_wma url_regex -i \.wma$
> http_access deny url_wma
> #
> acl url_js url_regex -i \.js$
> http_access deny url_js
> acl url_wsh url_regex -i \.wsh$
> http_access deny url_wsh
> acl url_msg url_regex -i \.msg$
> http_access deny url_msg
> acl url_reg url_regex -i \.reg$
> http_access deny url_reg
> acl url_cpl url_regex -i \.cpl$
> http_access deny url_cpl
> acl url_ppt url_regex -i \.ppt$
> http_access deny url_ppt
> acl url_pps url_regex -i \.pps$
> http_access deny url_pps
> acl url_doc url_regex -i \.doc$
> http_access deny url_doc
> acl url_xls url_regex -i \.xls$
> http_access deny url_xls
> acl url_pif url_regex -i \.pif$
> http_access deny url_pif
> acl url_src url_regex -i \.src$
> http_access deny url_src
> #
> cache_mgr squid@domaine.net
> cache_effective_user squid
> cache_effective_group squid
> log_icp_queries off
> buffered_logs on
> #
>

Received on Tue Oct 29 2002 - 06:11:54 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:56 MST