Your squidguard.conf is wrong.
for squidguard 1.2.0, the word "source" should be "src" for your source
classes and "dest" (not Destination") for your destination classes.
Also. your ACL for LAN clearly states "pass any". so of course it's not
blocking. Your block rules are not inside any ACL.
Your squidGuard.conf file should be this. Notice the access controls are
encapsulated with "acl { }"
# DIRECTORIES
dbhome /usr/share/squidGuard-1.2.0/db
logdir /var/log/squidGuard
# SOURCE ADDRESSES
src lan {
ip 192.168.0.0/24
}
# DESTINATION CLASSES
dest pornographie {
urllist adult/urls
domainlist adult/domains
}
dest audio-video {
urllist audio-video/urls
domainlist audio-video/domains
}
dest drogues {
urllist drugs/urls
domainlist drugs/domains
}
dest forums {
urllist forums/urls
domainlist forums/domains
}
dest jeux {
urllist gambling/urls
domainlist gambling/domains
}
dest hackers {
urllist hacking/urls
domainlist hacking/domains
}
dest redirecteurs {
urllist redirector/urls
domainlist redirector/domains
}
dest violence {
urllist violence/urls
domainlist violence/domains
}
dest warez {
urllist warez/urls
domainlist warez/domains
}
# ACL's
acl {
lan {
pass !pornographie !agressif !audio-video !drogues !forums !jeux
!hackers !redirecteurs !violence !warez all
redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u
}
default {
pass none
redirect http://www.yahoo.fr
}
}
-----Original Message-----
From: deny1 [mailto:deny1@free.fr]
Sent: June 7, 2004 5:22 AM
To: squid-users@squid-cache.org
Subject: [squid-users] squidguard
hi
i use squid with squidguard to refuse warez or other ads sites
despite that ,i surf without problems sites in this blacklist
here is my squidguard.conf
# CONFIGURATION DIRECTORIES
dbhome /usr/share/squidGuard-1.2.0/db
logdir /var/log/squidGuard
source LAN {
ip 192.168.0.0/24
}
destination pornographie {
urllist adult/urls
domainlist adult/domains
}
destination audio-video {
urllist audio-video/urls
domainlist audio-video/domains
}
destination drogues {
urllist drugs/urls
domainlist drugs/domains
}
destination forums {
urllist forums/urls
domainlist forums/domains
}
destination jeux {
urllist gambling/urls
domainlist gambling/domains
}
destination hackers {
urllist hacking/urls
domainlist hacking/domains
}
destination redirecteurs {
urllist redirector/urls
domainlist redirector/domains
}
destination violence {
urllist violence/urls
domainlist violence/domains
}
destination warez {
urllist warez/urls
domainlist warez/domains
}
LAN {
pass !pornographie !agressif !audio-video !drogues !forums !jeux
!hackers !redirecteurs !violence !warez
redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u
}
acl {
LAN {
pass any
redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u
}
acl {
default {
redirect
http://www.linux-pour-lesnuls.com/squidGuard.cgi?clientaddr=%a&srcclass=%s&t
argetclass=%t&url=%u
pass none
}
}
i think its a problem about the cgi script squidguard.cgi
which don-t block anything
if i launched this script on console ,it works
but with the url
http://www.linux-pour-lesnuls.com/squidGuard.cgi
i waiting a long for a response
thanks
Received on Mon Jun 07 2004 - 07:01:10 MDT
This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT