Hi Dilip, I implemented the solution i was last gived to you, If you still faced issue then try below solutions hope it will work for you! (I yet not tried this soln) ==================== Why isn't Squidguard blocking any sites? When squidguard starts up, it tries to do the following things: 1. Read the configuration file 2. Read the database or text files with the lists of sites to block 3. Write to its log file
If it fails to do any of these things, it goes into "emergency mode"; effectively this means that it doesn't do anything. The following problems will cause either 1, 2, or 3 to fail: The configuration file is not in the place compiled into squidguard or specified in squid.conf. Make sure squidguard is started with this line in squid.conf: redirect_program <path to squidGuard binary>/squidGuard -c <path to squidguard.conf>/squidguard.conf The database files are not in the place defined in squidguard.conf. Make sure the following is one of the first lines in squidguard.conf: dbhome <path to blacklists> For instance, I use: dbhome /usr/local/squidguard/db/blacklists The ownership of the configuration file, logfiles, or blacklist files is not correct. These files should be owned by the user and group under which the squid program runs. Look for the following lines in squid.conf: cache_effective_user nobody http://cri.univ-tlse1.fr/documentations/cache/squidguard.html "nobody" may be different ("squid" is also common) depending on various random factors. To make sure the ownership is correct, run the following commands: chown nobody.nobody <path to squidguard.conf> chown -R nobody.nobody <path to blacklists> chown -R nobody.nobody <path to logfiles> The permissions of the configuration file, logfiles, or blacklist files is not correct. Set the permissions as follows: chmod 644 <path to squidguard.conf> chmod -R 640 <path to blacklists> chmod -R 644 <path to logfiles> find <path to blacklists> -type d -exec chmod 755 \{\} \; -print chmod 755 <path to logfiles> There is a line-end before the "{" character in source or dest lists: ## bad src adults { ## good src adults { ========================= Another thing if you have set your selinux in enforcing mode n have taken that pron n nopron files from somewhere or etc.. Do look for selinux security issues.. Thanks, -Shirish Shukla "Give Respect To Time One Day At Right Time, Time Will Respect You!" --- On Sat, 8/14/10, Dilip <[email protected]> wrote: From: Dilip <[email protected]> Subject: [LinuxVadaPav] problem setting up transparent proxy server and also blocking in it To: [email protected] Date: Saturday, August 14, 2010, 7:39 AM when i place this thing httpd_accel_host virtual httpd_accel_with_proxy on httpd_accel_uses_host_header on in squid-2.6.STABLE21-6.el5 i got an error while checking the squid file parseConfigFile: line 3103 unrecognized: 'httpd_accel_host virtual' parseConfigFile: line 3104 unrecognized: 'httpd_accel_with_proxy on' parseConfigFile: line 3105 unrecognized: 'httpd_accel_uses_host_header on i am using centos and i also need help for blocking while giving this line in conf file acl spammers url_regex "/usr/local/squid/etc/sa-blacklist.current.domains" acl porn url_regex '/usr/local/squid/etc/porn' acl noporn url_regex '/usr/local/squid/etc/noporn' http_access deny spammers http_access deny porn !noporn user then also can access restricted site please help me friends thanks in advance [Non-text portions of this message have been removed]
