Re: [squid-users] Need help with a unique squidGuard setup from Henrik Nordstrom on 2006-10-11 (squid-users)

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Wed, 11 Oct 2006 22:13:50 +0200

ons 2006-10-11 klockan 15:57 -0400 skrev Nick Duda:

> acl {
> CanUseWebmail {
> pass mail webmail !instantmessaging all
> redirect
> http://localhost/errors/aclerror.php?clientaddr=%a&clientname=%n&clientu
> ser=%i&clientgroup=%s&url=%u&targetgroup=%t
> }

I think you need to switch the logics around here..

        webmail {
                pass CanUseWebmail
                redirect ...
        }

and similarly for the other destination groups. This changes the
configuration from restricting what sites each group of users may access
to restricting which users may access each group of sites, making it
easier to build permissive rules where the allowed access is the sum of
all rights.

Regards
Henrik

application/pgp-signature attachment: Detta är en digitalt signerad meddelandedel

Received on Wed Oct 11 2006 - 14:13:57 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Nov 01 2006 - 12:00:04 MST