|
Squid and squidguard were installed by mandrake
linux, so I didn't have to compile them. I configured squid to use squidguard
and tried it out, but it doesn't work properly. The results are indeed very
strange. I used a simple config file for squidguard which looks like
this:
logdir /usr/local/squidGuard/log
dbhome /usr/local/squidGuard/db dest porn { domainlist porn/domains urllist porn/urls } acl { default { pass !porn all redirect http://localhost/cgi/blocked?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&url=%u } } only the paths are a little different on
my system. Now, the strange thing is that it sometimes works and sometime does
not. Using a proxy in Opera and Mozilla browsers I tried, and the still, often I
could open the blacklisted websites in the /porn/domains. Also the strange thing
is that redirection works better if the proxy in Mozilla is 127.0.0.1:3128 and
not localhost:3128, which seems to be a Mozilla problem (?). Anyway, after
trying for 10 hours without much success, I ended with the following
situation:
blocking doesn't work at all! only if the config
file looks like this:
logdir /usr/local/squidGuard/log
dbhome /usr/local/squidGuard/db # dest porn { #domainlist porn/domains #urllist porn/urls # } acl { default { pass none redirect http://localhost/cgi/blocked?clientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&url=%u } } then all websites are indeed blocked, but if I
uncomment the dest directives, while leaving the default=none, it again doesn't
work. Blocking of porn blacklisted domains doesn't work at all now. I just don't
understand why, it did work first, even if not all the time, which is very very
strange. Squidguard log file shows no errors, everything is all right there.
Maybe I didn't configure Squid properly? I added the redirect_program and
redirect_children. All the paths are correct, I checked and doublechecked 1 mio
times.
Also, even if it worked, it's rather uncomfortable
to use, because you have to add the blocked sites to the database, rebuild the
*.db files using squidguard and then restart squid. Yes, I know, somebody said
that with version 1.2 of squidguard you don't have to restart squid, but this is
not true, the changes take only place if I restart squid or click on "apply
changes" in webAdmin, a programme which allows to configure all servers through
the browser on secure connection localhost port 10000. It is part of mandrake
linux, but i think it can be also downloaded from the net. Anyway, this is very
uncomfortable and takes too much time. I rather would like to use webwasher like
on windows, but it seems one has to pay, otherwise the linux shareware version
will not work properly with opera.
I think there is a way to block websites using the
apache server module mod_proxy, i.e. using apache as a proxy server. But is it
also possible to rewrite the blocked sites using the re_write module? maybe you
know, then please email me.
Anyway, I would like to know how to configure
Squid, because I think the problems are rather due to squid than to squidguard.
If you know how to configure squid in order to force it to redirect, please
email me.
Regards,
Gerhart
|
