RE: [squid-users] squidguard

From: Angela Burrell <[email protected]>
Date: Mon, 7 Jun 2004 09:01:01 -0400

Your squidguard.conf is wrong.

for squidguard 1.2.0, the word "source" should be "src" for your source
classes and "dest" (not Destination") for your destination classes.

Also. your ACL for LAN clearly states "pass any". so of course it's not
blocking. Your block rules are not inside any ACL.

Your squidGuard.conf file should be this. Notice the access controls are
encapsulated with "acl { }"

# DIRECTORIES
dbhome /usr/share/squidGuard-1.2.0/db
logdir /var/log/squidGuard

# SOURCE ADDRESSES
src lan {
        ip 192.168.0.0/24
}

# DESTINATION CLASSES

dest pornographie {
   urllist adult/urls
   domainlist adult/domains
}

dest audio-video {
   urllist audio-video/urls
   domainlist audio-video/domains
}

dest drogues {
   urllist drugs/urls
   domainlist drugs/domains
}

dest forums {
   urllist forums/urls
   domainlist forums/domains
}

dest jeux {
   urllist gambling/urls
   domainlist gambling/domains
}

dest hackers {
   urllist hacking/urls
   domainlist hacking/domains
}

dest redirecteurs {
   urllist redirector/urls
   domainlist redirector/domains
}

dest violence {
   urllist violence/urls
   domainlist violence/domains
}

dest warez {
   urllist warez/urls
   domainlist warez/domains
}

# ACL's

acl {
lan {
  pass !pornographie !agressif !audio-video !drogues !forums !jeux
!hackers !redirecteurs !violence !warez all
  redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u

  }

  default {
        pass none
      redirect http://www.yahoo.fr
        }
}

-----Original Message-----
From: deny1 [mailto:deny1@free.fr]
Sent: June 7, 2004 5:22 AM
To: squid-users@squid-cache.org
Subject: [squid-users] squidguard

hi

i use squid with squidguard to refuse warez or other ads sites

despite that ,i surf without problems sites in this blacklist
 here is my squidguard.conf

# CONFIGURATION DIRECTORIES
dbhome /usr/share/squidGuard-1.2.0/db
logdir /var/log/squidGuard

source LAN {
   ip 192.168.0.0/24
}

destination pornographie {
   urllist adult/urls
   domainlist adult/domains
}

destination audio-video {
   urllist audio-video/urls
   domainlist audio-video/domains
}

destination drogues {
   urllist drugs/urls
   domainlist drugs/domains
}

destination forums {
   urllist forums/urls
   domainlist forums/domains
}

destination jeux {
   urllist gambling/urls
   domainlist gambling/domains
}

destination hackers {
   urllist hacking/urls
   domainlist hacking/domains
}

destination redirecteurs {
   urllist redirector/urls
   domainlist redirector/domains
}

destination violence {
   urllist violence/urls
   domainlist violence/domains
}

destination warez {
   urllist warez/urls
   domainlist warez/domains
}

LAN {
  pass !pornographie !agressif !audio-video !drogues !forums !jeux
!hackers !redirecteurs !violence !warez
  redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u

  }

acl {
 LAN {
   pass any
   redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u

 }

acl {
 default {
   redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u

   pass none
  }
}

i think its a problem about the cgi script squidguard.cgi
which don-t block anything
if i launched this script on console ,it works
but with the url
http://www.linux-pour-lesnuls.com/squidGuard.cgi
i waiting a long for a response

thanks
Received on Mon Jun 07 2004 - 07:01:10 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT