RE: [squid-users] Help on acl regarding execs

From: Peņa, Botp <botp@dont-contact.us>
Date: Wed, 1 Aug 2001 10:06:19 +0800

Thanks again, Robert.

Yes, in fact, you mentioned (previously) two solutions. I am trying out the
first solution using squid's acl. But I think it does not work right as
expected.

Your second solution (using nt/windows policy) will be the ultimate way. I
will be talking w the rest of the winXX admins today regarding this.

Thanks again,
-botp

-----Original Message-----
From: Robert Collins [mailto:robert.collins@itdomain.com.au]
Sent: Wednesday, August 01, 2001 9:24 AM
To: Peņa, Botp
Cc: squid-users@squid-cache.org
Subject: Re: [squid-users] Help on acl regarding execs

On 01 Aug 2001 09:31:04 +0800, "Peņa, Botp" wrote:
> Hi Team,
>
> I am trying to dis-allow the downloading/executing of executable files and
I
> have the ff on squid.conf:
>
> acl ban_exec urlpath_regex [-i] \.exe$ \.bat$ \.com$ \.pif$ \.lnk$
> http_access deny ban_exec
>
> This works but it works strictly. A lot of pages do not show up (w access
> denied message).
>
> What I want is that, squid will only disallow at the point that the user
is
> trying to download/execute the file.
>
> Maybe some of you have other ways/solutions?

I think this was answered about 3 days ago - you need to set policy on
your workstation...

to squid there is _no_ difference between viewing a page and downloading
a fiel and running a file. So squid cannot discriminate between those
actions.

Rob

> Again, thanks in advance,
> -botp
>
>
Received on Tue Jul 31 2001 - 20:06:10 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:01:21 MST