LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-27-2005, 09:23 PM   #1
myheart
LQ Newbie
 
Registered: Oct 2004
Posts: 17

Rep: Reputation: 0
using the squidguard blacklist


i have setup a transparent squid proxy with squidGuard, but i want to add my own blacklist, so i add my own domains.date.diif file in the blacklist folder i just put +domains and i run squidGuard -C all to create a new db file, but when i start the squid again the domains i enter is not been block. anyone can guide me ? one more thing is there any tool that can help to add and remove squidGuard list much more easier ? btw i using
mandrake 10.0
squid 2.5.STABLE4
squidGuard 1.2.0
i really appreciate any suggestion....
 
Old 01-29-2005, 07:27 AM   #2
maxut
Senior Member
 
Registered: May 2003
Location: istanbul
Distribution: debian - redhat - others
Posts: 1,188

Rep: Reputation: 50
why dont u blok those domains trou squid?
it is much more easier. u wont have trouble when u update squidguard db.

in "squid.conf" :
acl bloked-doms dstdomain "/etc/squid/blocked-domains"
http_access deny blocked-doms

create "/etc/squid/blocked-domains" file and put the domains that u want to block, like this:
.domain1.com
.domain2.com

"." before domain name means that block including subdomains.

edit: "squidGuard -u" updates files using diff files. "-C all" just creates db files.

i hope this helps u.
good luck.


Last edited by maxut; 01-29-2005 at 07:30 AM.
 
Old 01-31-2005, 12:20 AM   #3
myheart
LQ Newbie
 
Registered: Oct 2004
Posts: 17

Original Poster
Rep: Reputation: 0
the reason i want to use squidGuard that it has a blacklist database, and quit good. and i try squidGuard -u and -C all but it seem not working, when i check the squidGuar log it updating the db. but when i try to browse using my browser the website still get through, is there any way i can use to check my squidGuard working properly or not. here my squidGuard log :
2005-01-31 10:36:05 [4767] init domainlist /usr/share/squidGuard-1.2.0/db/porn/domains
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/porn/domains.db
2005-01-31 10:36:05 [4767] init urllist /usr/share/squidGuard-1.2.0/db/porn/urls
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/porn/urls.db
2005-01-31 10:36:05 [4767] init expressionlist /usr/share/squidGuard-1.2.0/db/porn/expressions
2005-01-31 10:36:05 [4767] init domainlist /usr/share/squidGuard-1.2.0/db/adult/domains
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/adult/domains.db
2005-01-31 10:36:05 [4767] init urllist /usr/share/squidGuard-1.2.0/db/adult/urls
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/adult/urls.db
2005-01-31 10:36:05 [4767] init expressionlist /usr/share/squidGuard-1.2.0/db/adult/expressions
2005-01-31 10:36:05 [4767] init domainlist /usr/share/squidGuard-1.2.0/db/gambling/domains
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/gambling/domains.db
2005-01-31 10:36:05 [4767] init urllist /usr/share/squidGuard-1.2.0/db/gambling/urls
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/gambling/urls.db
2005-01-31 10:36:05 [4767] init domainlist /usr/share/squidGuard-1.2.0/db/warez/domains
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/warez/domains.db
2005-01-31 10:36:05 [4767] init urllist /usr/share/squidGuard-1.2.0/db/warez/urls
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/warez/urls.db
2005-01-31 10:36:05 [4767] init domainlist /usr/share/squidGuard-1.2.0/db/linux/domains
2005-01-31 10:36:05 [4767] loading dbfile /usr/share/squidGuard-1.2.0/db/linux/domains.db
2005-01-31 10:36:05 [4767] squidGuard 1.2.0 started (1107138965.546)
2005-01-31 10:36:05 [4767] db update done
2005-01-31 10:36:05 [4767] squidGuard stopped (110713yyopped (1107138965.644)
 
Old 01-31-2005, 12:24 AM   #4
myheart
LQ Newbie
 
Registered: Oct 2004
Posts: 17

Original Poster
Rep: Reputation: 0
btw anyone know any tool, or web tool to help add and remove squidGuard list.
 
Old 02-01-2005, 12:05 PM   #5
bdogg
Member
 
Registered: Sep 2004
Location: Salt Lake City, UT
Distribution: Debian Sarge
Posts: 93

Rep: Reputation: 15
redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf



Make sure that is in squid.conf.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
error: mail command failed for /var/log/squidguard/squidGuard.log.6 Niceman2005 Linux - Networking 1 01-22-2009 02:24 PM
a blacklist for hal? evans0409 Linux - Software 12 02-05-2006 10:29 PM
'blacklist' WARNING JerryP Mandriva 5 12-01-2005 07:47 PM
what is /etc/hotplug/blacklist for? slinky2004 Linux - Software 1 09-11-2005 12:44 AM
hotplug blacklist doesn't quite work ? aherrys Slackware 5 01-13-2005 12:09 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:47 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration