Buongiorno a tutti, come da subject e' praticamente un mese che ci sbatto su la testa senza venirne a capo, non so proprio piu' cosa inventarmi o cosa andare a vedere, non capisco perche' se io dico nel file /etc/squid/sarg.conf output_directory (flag -o) /var/www/html/squid-report lui come dir si prende /tmp/sarg_tmp Allego i file conf di squid e di sarg per dare l'esatto quadro della mia configurazione, e il messaggio che da' lanciando sarg -x. La directory /html/squid-reports ha permessi di lettura e scrittura ed e' diproprieta' proxy.proxy la distro e' Debian Sarge con kernel 2.6.11.10 qualche suggerimento da darmi? Grazie in anticipo --
Mario Vittorio Guenzi Zincometal S.p.A. c.so Europa Str.prov 34 20010-Inveruno (MI) tel: 02-979661 fax: 02-97966351 E-mail [EMAIL PROTECTED] http://www.zincometal.com Si vis pacem, para bellum
# sarg.conf # # TAG: language language Italian # TAG: access_log file access_log /var/log/squid/access.log # TAG: graphs yes|no # graphs yes graph_days_bytes_bar_color orange # TAG: title title "Squid User Access Reports" # TAG: font_face font:face Arial # TAG: header_color header_color darkblue # TAG: header_bgcolor header_bgcolor blanchedalmond # TAG: font_size font_size 9px # TAG: header_font_size header_font_size 9px # TAG: title_font_size title_font_size 11px # TAG: background_color background_color white # TAG: text_color text_color #000000 # TAG: text_bgcolor text_bgcolor lavender # TAG: title_color title_color green # TAG: temporary_dir temporary_dir /tmp # TAG: output_dir output_dir /var/www/html/squid-reports # TAG: output_email output_email [EMAIL PROTECTED] # TAG: resolve_ip yes/no resolve_ip yes # TAG: user_ip yes/no user_ip yes # TAG: topuser_sort_field field normal/reverse topuser_sort_field BYTES reverse # TAG: user_sort_field field normal/reverse user_sort_field BYTES reverse # TAG: exclude_users file exclude_users /etc/squid/sarg.users # TAG: exclude_hosts file exclude_hosts /etc/squid/sarg.hosts # TAG: useragent_log file useragent /var/log/squid/useragent.log # TAG: date_format date_format e # TAG: lastlog n lastlog 0 # TAG: remove_temp_files yes remove_temp_files yes # TAG: index yes|no|only index yes # TAG: overwrite_report yes|no # overwrite_report no # TAG: records_without_userid ignore|ip|everybody # records_without_userid everybody # TAG: use_comma no|yes # use_comma no # TAG: mail_utility mail|mailx mail_utility mailx # TAG: topsites_num n topsites_num 100 # TAG: topsites_sort_order CONNECT|BYTES A|D topsites_sort_order CONNECT D # TAG: index_sort_order A/D index_sort_order D # TAG: exclude_codes file exclude_codes /etc/squid/sarg.exclude_codes # TAG: max_elapsed milliseconds max_elapsed 28800000 # TAG: report_type type report_type topsites sites_users users_sites date_time denied auth_failures site_user_time_date # TAG: usertab filename usertab /etc/squid/sarg.usertab # TAG: long_url yes|no # long_url no # TAG: date_time_by bytes|elap date_time_by bytes # TAG: charset name # charset Latin1 # TAG: privacy yes|no # privacy no # TAG: include_users "user1:user2:...:usern" # TAG: show_successful_message yes|no show_successful_message no # TAG: show_read_statistics yes|no # Shows some reading statistics. # show_read_statistics yes # TAG: topuser_fields topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE # TAG: user_report_fields user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE # TAG: topuser_num n topuser_num 0 # TAG: site_user_time_date_type list|table site_user_time_date_type table # TAG: datafile file datafile /tmp/p8 # TAG: datafile_delimiter ";" # ascii character to use as a field separator in datafile # #datafile_delimiter ";" # TAG: datafile_fields all datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed # TAG: weekdays weekdays 0-6 # TAG: hours hours 0-23 # TAG: show_sarg_info yes|no show_sarg_info yes # TAG: show_sarg_logo yes|no show_sarg_logo yes # TAG displayed_values bytes|abbreviation # displayed_values bytes # Report limits # TAG authfail_report_limit n # TAG denied_report_limit n # TAG siteusers_report_limit n # TAG squidguard_report_limit n # TAG user_report_limit n # report limits (lines). # '0' no limit # authfail_report_limit 10 denied_report_limit 10 siteusers_report_limit 0 #squidguard_report_limit 10 user_report_limit 0 # TAG www_document_root dir www_document_root /var/www # TAG external_css_file path external_css_file /usr/share/doc/sarg/css.tpl # TAG download_suffix "suffix,suffix,...,suffix" download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"
# WELCOME TO SQUID 2 # ------------------ # # This is the default Squid configuration file. You may wish # to look at the Squid home page (http://www.squid-cache.org/) # for the FAQ and other documentation. # # The default Squid config file shows what the defaults for # various options happen to be. If you don't need to change the # default, you shouldn't uncomment the line. Doing so may cause # run-time problems. In some cases "none" refers to no default # setting at all, while in other cases it refers to a valid # option - the comments for that keyword indicate if this is the # case. # # NETWORK OPTIONS # ----------------------------------------------------------------------------- # TAG: http_port # Usage: port # hostname:port # 1.2.3.4:port #Default: http_port 192.168.2.252:3128 # TAG: https_port # TAG: icp_port # The port number where Squid sends and receives ICP queries to # and from neighbor caches. Default is 3130. To disable use # "0". May be overridden with -u on the command line. # icp_port 192.168.2.252:3130 # OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM # ----------------------------------------------------------------------------- # TAG: cache_peer # To specify other caches in a hierarchy, use the format: cache_peer 127.0.0.1 parent 8118 7 no-query #We recommend you to use at least the following line. hierarchy_stoplist cgi-bin ? # TAG: no_cache # A list of ACL elements which, if matched, cause the request to # not be satisfied from the cache and the reply to not be cached. # In other words, use this to force certain objects to never be cached. # # You must use the word 'DENY' to indicate the ACL names which should # NOT be cached. # #We recommend you to use the following two lines. acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY # OPTIONS WHICH AFFECT THE CACHE SIZE # ----------------------------------------------------------------------------- # TAG: cache_mem (bytes) cache_mem 48 MB #192/4 # TAG: cache_swap_low (percent, 0-100) # TAG: cache_swap_high (percent, 0-100) cache_swap_low 90 cache_swap_high 95 # TAG: maximum_object_size (bytes) maximum_object_size 4096 KB # LOGFILE PATHNAMES AND CACHE DIRECTORIES # ----------------------------------------------------------------------------- # TAG: cache_dir cache_dir ufs /var/spool/squid 1024 16 256 # TAG: cache_access_log cache_access_log /var/log/squid/access.log # TAG: cache_log cache_log /var/log/squid/cache.log # TAG: cache_store_log cache_store_log /var/log/squid/store.log # TAG: emulate_httpd_log on|off emulate_httpd_log on # TAG: log_ip_on_direct on|off log_ip_on_direct on # TAG: mime_table # mime_table /usr/share/squid/mime.conf # TAG: useragent_log useragent_log /var/log/squid/useragent.log # TAG: pid_filename pid_filename /var/run/squid.pid # TAG: debug_options debug_options ALL,5 # TAG: log_fqdn on|off # Turn this on if you wish to log fully qualified domain names # in the access.log. To do this Squid does a DNS lookup of all # IP's connecting to it. This can (in some situations) increase # latency, which makes your cache seem slower for interactive # browsing. # #Default: log_fqdn on # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS # ----------------------------------------------------------------------------- # TAG: hosts_file # hosts_file /etc/hosts # OPTIONS FOR TUNING THE CACHE # ----------------------------------------------------------------------------- # TAG: refresh_pattern #Suggested default: refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 # TIMEOUTS # ----------------------------------------------------------------------------- # TAG: connect_timeout time-units connect_timeout 2 minute # TAG: peer_connect_timeout time-units peer_connect_timeout 30 seconds # TAG: read_timeout time-units read_timeout 15 minutes # TAG: request_timeout request_timeout 30 seconds # ACCESS CONTROLS # ----------------------------------------------------------------------------- # TAG: acl #Recommended minimum configuration: acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl to_localhost dst 127.0.0.0/8 acl SSL_ports port 443 563 # https, snews acl SSL_ports port 873 # rsync acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 631 # cups acl Safe_ports port 873 # rsync acl Safe_ports port 901 # SWAT acl purge method PURGE acl CONNECT method CONNECT # TAG: http_access # #Recommended minimum configuration: # # Only allow cachemgr access from localhost http_access allow manager localhost http_access deny manager # Only allow purge requests from localhost http_access allow purge localhost http_access deny purge # Deny requests to unknown ports http_access deny !Safe_ports # Deny CONNECT to other than SSL ports http_access deny CONNECT !SSL_ports # # We strongly recommend the following be uncommented to protect innocent # web applications running on the proxy server who think the only # one who can access services on "localhost" is a local user http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS acl mynetwork src 192.168.2.0/255.255.255.0 acl black_list url_regex "/usr/local/bin/black.list" acl gator browser Gator/5.0 acl snmppublic snmp_community public http_access deny black_list http_access deny gator http_access allow mynetwork snmp_access allow snmppublic all # define ACL for protocol ftp acl ftp proto FTP # Do not forward FTP request to Privoxy always_direct allow ftp # http_access deny all #Forward all the rest to privoxy never_direct allow all http_access allow localhost # And finally deny all other access to this proxy http_access deny all # TAG: http_reply_access http_reply_access allow all # TAG: icp_access icp_access allow all # ADMINISTRATIVE PARAMETERS # ----------------------------------------------------------------------------- # TAG: cache_mgr # Email-address of local cache manager who will receive # mail if the cache dies. The default is "webmaster." # #Default: cache_mgr [EMAIL PROTECTED] # TAG: cache_effective_user cache_effective_user proxy # TAG: cache_effective_group cache_effective_group proxy # OPTIONS FOR THE CACHE REGISTRATION SERVICE # ----------------------------------------------------------------------------- # HTTPD-ACCELERATOR OPTIONS # ----------------------------------------------------------------------------- # TAG: httpd_accel_host # TAG: httpd_accel_port httpd_accel_port 80 httpd_accel_host virtual # TAG: httpd_accel_with_proxy on|off httpd_accel_with_proxy on # TAG: httpd_accel_uses_host_header on|off httpd_accel_uses_host_header on # MISCELLANEOUS # ----------------------------------------------------------------------------- # TAG: client_db on|off # If you want to disable collecting per-client statistics, # turn off client_db here. # #Default: client_db on # TAG: icon_directory icon_directory /usr/share/squid/icons # TAG: error_directory error_directory /usr/share/squid/errors/English # TAG: snmp_port snmp_port 3401 # TAG: snmp_access snmp_access allow snmppublic localhost snmp_access deny all # #Default: # snmp_access deny all # TAG: snmp_incoming_address # TAG: snmp_outgoing_address snmp_incoming_address 0.0.0.0 snmp_outgoing_address 255.255.255.255 # TAG: as_whois_server as_whois_server whois.ra.net coredump_dir /var/spool/squid # TAG: ie_refresh on|off ie_refresh on
SARG: Init SARG: Loading configuration from: /etc/squid/sarg.conf SARG: Caricamento exclude file da: /etc/squid/sarg.hosts SARG: Caricamento exclude file da: /etc/squid/sarg.users SARG: Parametri: SARG: SARG: Hostname o indirizzo IP (-a) = SARG: Useragent log (-b) = /var/log/squid/useragent.log SARG: File Exclude (-c) = /etc/squid/sarg.hosts SARG: Data from-until (-d) = SARG: Repporto spedito all'indirizzo Email (-e) = [EMAIL PROTECTED] SARG: File di Configurazione (-f) = /etc/squid/sarg.conf SARG: Formato della Data (-g) = Europa (dd/mm/yyyy) SARG: Rapporto IP (-i) = Si SARG: Input log (-l) = /var/log/squid/access.log SARG: Risoluzione IP Address (-n) = Si SARG: Directory di destinazione (-o) = /tmp/sarg_tmp/ SARG: Usa l'indirizzo Ip invece della userid (-p) = Si SARG: Accessed site (-s) = SARG: Tempo (-t) = SARG: Utente (-u) = SARG: Directory Temporanea (-w) = /tmp SARG: Messaggi di Debug (-x) = Si SARG: Messaggi di Processo (-z) = No SARG: SARG: sarg versione: 2.0.8 May-29-2005 SARG: Maximum file descriptor: cur=1024 max=1024, changed to cur=20000 max=20000 SARG: Loading User table: /etc/squid/sarg.usertab SARG: Lettura access log file: /var/log/squid/access.log SARG: Records letti: 103, scritto: 103, esclusi: 0 SARG: Formato Common log SARG: Periodo: 29Jul2005-29Jul2005 SARG: Creazione del file del periodo SARG: Creazione del file: /tmp/sarg/192_168_2_139 SARG: Sto Ordinano il file: /tmp/sarg/192_168_2_139 SARG: Fine
signature.asc
Description: OpenPGP digital signature