Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hey guys, I'm new to the world of Linux (installed it for the first time last week), so I'm probably missing something. Anyways, here's the problem I'm having:
I have Squid setup and running on a MDK 10.1 box. The proxy is running fine on it, and I can connect through it without any problems. However, I'm trying to get it to redirect to squidGuard, but it's still allowing all websites to go through.
My squidGuard.log (/var/log/squidGuard/squidGuard.log) contains the following:
Code:
2005-03-29 04:02:03 [11299] destblock bl_drugs missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_ads missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_aggressive missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_proxy missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_mail missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_audio-video missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_violence missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_warez missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_gambling missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_hacking missing active content, set inactive
2005-03-29 04:02:03 [11299] destblock bl_porn missing active content, set inactive
2005-03-29 04:02:03 [11299] (squidGuard): can't write to logfile /home/brad/local/squidguard/logs/squidGuard.log
So, on that last line, it looks like squidGuard has two log files on my system? If that's the case, then I'm assuming I screwed up somewhere when installing it?
Any help on pointing me in right direction on getting this resolved would be much appreciated, even if it's removing squidGuard and reinstalling it.
1) Regards to the logfile path: at the start of your squidguard.conf, changed the "logdir /home/brad/local/squidguard/logs" to l/var/log/squidGuard/squidGuard.log. That logdir tells squidguard where to log.
2) Where do you place your blacklist files? Is that path correct dbhome /home/brad/local/squidguard/db?
dbhome is where you place all your blacklist files. I placed mine in /var/db so in my squidguard.conf I set
dbhome /var/db
try to change these first, and see what difference it makes in your squidguard.log
I went ahead and commented out the lines in the squidGuard.conf under each category where it was looking for a log, and then did a squid -k reconfigure, and that got rid of the errors for being unable to write in the log file squidGuard.log, so that's the good news. The bad news is that it's still not filtering yet.
As for the part that says "cannot write to log file", I think that is because you did not change the squidguard.log 's owner. By default the owner is "root". So you should change it to be owned by squid.
Thats because squid automatically run by owner squid instead of root because of secuirty reason or something. So everything that needs to be read by squid would be better changed to owner squid.
try do these first, and send post your log file again if there is error.
Afterwards, I did a squid -k reconfigure to restart it, and looked at the log file. I do have something new showing now:
"ACL destination porn is not defined in configfile /etc/squid/squidGuard.conf"
If you're able to do so, could you post your squidGuard.conf and squid.conf so that I could compare them? Again, I really do appreciate you helping me out on this.
I'm setting this up temporarily on a "test" server to try it out, and then I'll end up putting this on a new server if all goes well. I also plain on writing "an idiot's guide to setting up squidGuard by an idiot" on how to get this going. lol
Last edited by MeridianRebel; 04-01-2005 at 10:36 AM.
The name of the acl "porn" or "bl_porn" depends on your blacklist folder. If inside your blacklist folder its. the blacklist file I downloaded has it named porn so my acl should be porn. But I think the blacklist you downloaded named it bl_porn .
Anyway, have fun filtering. But I find it still not very effective because squidguard just do url filtering, for some websites that don't contain porny expression on it won't get filtered. However I don't think there is any free content filtering software around. So squidguard should be the best you can get.
Oh, one more question. I'm using Sarg for the reporting, and it seems to be working great with the exception of the "denied" sites. The ones that were denied, and I was redirected elsewhere, are showing up on the site report as being accessed. Is that just the way it's going to work, or is there something else that I need to set?
Thanks man.
Last edited by MeridianRebel; 04-04-2005 at 10:37 AM.
I edited the squidGuard.conf to include:
log stopped.log
after each category. I then tested, and it's recording the denied sites to that file. How do I get Sarg to pick that up and include it was only "denied" on the reports?
In regards to generating report from squidguard log. I expected the same too. But I think it didn't do what I expected to log the report in denied sites.
Wondering if you use webmin. If you use webmin to configure sarg, there is one setting that it ask you to fill in the path of your squidguard's log file. I did that but as far as I remember it didn't do much even after I provided the path of the squidguard log file.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.