<quote who="[EMAIL PROTECTED]"> > Most sites I have been to recommend blocking by dst, however I noticed I > could block by application/type with the following line in squid.conf: > acl msn-type req_mime_type -i ^application/x-msn-messenger$ > http_access deny msn-type > > I have tested it, and cannot see any problems with it. > > Does anyone else have any recommendations on which I should use, or > perhaps another method?
I've used a combination of port blocking for the old protocol, and squid-based mime (as above) and query string blocking (there's a particular dll referenced in MSN queries) for the http-based protocol. They seem to like adding new methods every now and then, however... ;-) The same approach works for ICQ/AIM and friends too. - Jeff -- linux.conf.au 2004: Adelaide, Australia http://lca2004.linux.org.au/ "I came for the quality, but I stayed for the freedom." - Sean Neakums -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
