[SOLVED] New installation of squid not starting kali linux
Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
So, curious why you are using squid in Kali Linux. Kali Linux is not a general purpose distro and certainly not one that should be running a web proxy. Have you read this? https://www.linuxquestions.org/quest...ad-4175614092/
Kali is a highly specialized Linux distro intended for penetration testing only. Sure you can use it for other things but expect problems if you to.
This is my first post in this forum.
I Installed Squid in Kali linux and when I run
Code:
sudo systemctl start squid
and
Code:
sudo systemctl status squid
I get the following message:
I have not yet made any modifications to /etc/squid/squid.conf file. Running
Code:
sudo squid -k parse
Gives the following output :
How to fix the error during squid service startup? Any suggestions would be extremely useful.
Best suggestion? Don't use Kali.
Why would you want to use Kali for ANYTHING, past what it was designed for: pentesting and security testing?? Did you read their website?? From their *OWN DOCUMENTATION*
Quote:
Originally Posted by Kali Docs
...Kali is a Linux distribution specifically geared towards professional penetration testers and security specialists, and given its unique nature, it is NOT a recommended distribution if you’re unfamiliar with Linux or are looking for a general-purpose Linux desktop distribution for development, web design, gaming, etc.
Thanks for replies.
I have actually joined a pentesting course . In that we are using arpspoof and squid to modify the web page served to the victim by using some redirect scripts [like these].
OK, makes sense then. Thank you for clarifying. I have not installed squid on anything ever so am not able to help in that regard.
Your best bet is to probably install squid in a Debian VM and leverage that. Kali is just so funky in terms of installing anything outside of the norm. Sorry if that isn't the greatest solution but it's the best I can do given my lack of experience with squid.
OK, makes sense then. Thank you for clarifying. I have not installed squid on anything ever so am not able to help in that regard.
Your best bet is to probably install squid in a Debian VM and leverage that. Kali is just so funky in terms of installing anything outside of the norm. Sorry if that isn't the greatest solution but it's the best I can do given my lack of experience with squid.
Thanks for your reply .
I actually tried installing squid in fedora . Initially systemctl start was fine but after changing http_port 3128 to http_port 3128 intercept in squid.conf , it did not start properly.
I am totally new to squid (but not new to linux).
Once again thanks for all replies 😊.
Thanks for replies.
I have actually joined a pentesting course . In that we are using arpspoof and squid to modify the web page served to the victim by using some redirect scripts [like these].
Surprised they didn't tell you what Kali was, and the preferred methods for using it; again, it's on Kali's own website, and it's always suggested you run it from a virtual machine, or from a 'live' USB drive, NOT install it.
sevendogsbsd is exactly right; install any version of Linux and put Squid on it...again, Kali *IS NOT* meant to do such things. I'd strongly suggest you read those scripts and figure out what they're doing and how, then load them one by one to see the results. A default Squid installation is not difficult, and if you have Kali in a virtual machine on your Squid system, that makes things pretty easy to navigate.
Thanks everyone for your help and support.
After lots of trial and error I managed to fix the errors.
Here is all I did :
I changed the ownership of /var/pool/squid by
Code:
sudo chown squid:squid /var/spool/squid
Then I moved all the redirect scripts to the /etc/squid directory.
Then I configured the firewall to allow all the traffic through the port:
Code:
sudo ufw allow proto tcp from any to any port 3128
Here is my final squid config file [/etc/squid/squid.conf] :
Quote:
#
# Recommended minimum configuration:
#
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN)
#acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN)
#acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN)
#acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines
#acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN)
acl localnet src 192.168.0.0/16
# RFC 1918 local private network (LAN)
#acl localnet src fc00::/7 # RFC 4193 local private network range
#acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
# Only allow cachemgr access from localhost
http_access allow localhost manager
http_access deny manager
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
http_access allow localnet
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
# Squid normally listens to port 3128
http_port 3128 intercept
http_port 3129
# visible_hostname squid.proxy
# Uncomment and adjust the following to add a disk cache directory.
#cache_dir ufs /var/spool/squid 100 16 256
# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid
#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
url_rewrite_program /etc/squid/flipimages.pl
Hope it's useful for others having the same problem .
Thanks for providing (giving) your solution for others!!! (tho #7 is conceptual sol'n)
(UNhuamin [username_pun] take-only users don't have that decent consideration to giveanything, for others)
& thanks for marking [SOLVED]!!!
+1 #10 !!!
Last edited by !!!; 04-04-2020 at 09:20 PM.
Reason: thread was marked Solved, so changed my req to ty.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
