Do you have file permission all the way down into the directory. As a
test, the tcsh the shell to nobody in /etc/passwd, then login as nobody,
and see if you can change directory all the way down to the domains
file. Then see if you can read it.
Chances are you have a unix file permission problem somewhere down the path
where one of the directories does not have the right privileges.
At 12:46 AM 3/29/02 -0600, Paul Lauss wrote:
>I have squidGuard set up and running but it isn't working correctly:
>[/var/db/squidGuard]$ pgrep squid
>USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND
>root 3623 0.0 1.5 2640 1168 ?? Is 11:51PM 0:00.04
>/usr/local/sbin/squid -sY -f /usr/local/etc/squid/squid.conf
>nobody 3624 0.0 9.6 8268 7568 ?? S 11:51PM 0:04.31 (squid) -sY
>-f /usr/local/etc/squid/squid.conf (squid)
>nobody 3722 0.0 1.1 1784 888 ?? Is 12:04AM 0:00.06 (squidGuard)
>(squidGuard)
>nobody 3723 0.0 1.1 1784 888 ?? Is 12:04AM 0:00.06 (squidGuard)
>(squidGuard)
>nobody 3724 0.0 1.1 1784 888 ?? Is 12:04AM 0:00.06 (squidGuard)
>(squidGuard)
>nobody 3725 0.0 1.1 1784 888 ?? Is 12:04AM 0:00.05 (squidGuard)
>(squidGuard)
>nobody 3726 0.0 1.1 1784 888 ?? Is 12:04AM 0:00.06 (squidGuard)
>(squidGuard)
>
>I have beat my head against the cache directory for 4 days now and I'm at
>a loss. My squidGuard.log says:
>2002-03-28 23:51:28 [3625] init domainlist /var/db/squidGuard/ads/domains
>2002-03-28 23:51:28 [3625] /var/db/squidGuard/ads/domains: Permission denied
>2002-03-28 23:51:28 [3625] going into emergency mode
>
>
>I have given full permissions to the directory:
>[/var/db/squidGuard/ads]$ ls -la
>total 256
>drwxrwxrwx 2 nobody nobody 512 Mar 28 23:35 .
>drwxr-s--- 16 root wheel 512 Mar 27 16:45 ..
>-rwxrwxrwx 1 nobody nobody 58682 Mar 27 16:45 domains
>-rwxrwxrwx 1 nobody nobody 172032 Mar 27 16:45 domains.db
>-rwxrwxrwx 1 nobody nobody 3570 Mar 27 16:45 urls
>-rwxrwxrwx 1 nobody nobody 16384 Mar 27 16:45 urls.db
>
>
>My squidGuard.conf is fairly simple:
>logdir /var/log/squidGuard
>dbhome /var/db/squidGuard
>
>source restricted {
> ip 10.22.22.22
>}
>
>dest ads {
> domainlist ads/domains
> urllist ads/urls
>}
># "aggressive"
>dest aggressive {
> domainlist aggressive/domains
> urllist aggressive/urls
>}
># "drugs"
>dest drugs {
> domainlist drugs/domains
> urllist drugs/urls
>}
># "gambling"
>dest gambling {
> domainlist gambling/domains
> urllist gambling/urls
>}
># "hacking"
>dest hacking {
> domainlist hacking/domains
> urllist hacking/urls
>}
># "porn"
>dest porn {
> domainlist porn/domains
> urllist porn/urls
> expressionlist porn/expressions
>}
># "proxy"
>dest proxy {
> domainlist proxy/domains
> urllist proxy/urls
>}
># "violence"
>dest violence {
> domainlist violence/domains
> urllist violence/urls
>}
># "warez"
>dest warez {
> domainlist warez/domains
> urllist warez/urls
> expressionlist warez/expressions
>}
># access control lists
>acl {
> restricted {
> pass !in-addr !ads !aggressive !drugs !gambling !hacking !porn
> !proxy !violence !warez
> redirect
> http://192.168.7.254/cgi-bin/squidguard.cgi?clientaddr=%a&client
> name=%n&clientuser=%i&clientgroup=%s&url=%u
> }
># default policy
> default {
> pass !ads !aggressive !drugs !gambling !hacking !porn !proxy
> !untrusted !violence !warez none
> redirect
> http://192.168.7.254/cgi-bin/squidguard.cgi?clientaddr=%a&client
>name=%n&clientuser=%i&clientgroup=%s&url=%u
> }
>}
>
>Any help with this I could get would be dandy... at this point I am lost.
>
>
