Re: How do I congiure to deny funny url accesses?

From: Seiji Tokunaga <>
Date: Tue, 4 Feb 1997 10:47:24 +0900 (JST)


>> Because i'm forced to deny access to a lot of websites, i asked
>> Duane to add lookup to the 'acl dstdomain' directive. (Thanks, Duane)
>> I put these lines in my squid.conf
>> acl dirtydomain dstdomain
>> acl nolookup dstdomain none
>> http_access deny dirtydomain
>> http_access deny nolookup
>> The result: all requests which contain an URL-host-pattern
>> '' and the associated IP-Numbers are denied.
>> The second line denies all IP-URLs, where a reverse lookup fails.

My squid gives error when I use "dstdomain". I am using 1.0.18
so I reckon it doesn't support it. So I couldn't confirm it.
# Could you give me a pointer on the difference bet. 1.0.x & 1.1.x?
 I am wondering if I should switch to 1.1.x.

As I stated on the other thread. Using "dst" seems
solve the problem.

Thank you all for your help.

Seiji Tokunaga (
NEC Informatec Systems, NSI Div., Network Integration Dept.
  TEL: 044-856-8481 FAX: 044-856-2273
  NEC TEL: 272-5607 FAX: 272-5649 MAIL:272-5600
Received on Mon Feb 03 1997 - 17:58:08 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:34:23 MST