How many users are you serving?
> John (et al),
> I have increased the redirectors to 60 from 40 and that seems to have
> stopped bypassing of the filter for now and I also have not seen links
> returning the wrong address as of yet as well but they do admit it is a
> problem. I was actually using that problem as an indicator of the filter
> bypass problem
> Also, I was looking at modifying the dansguardian "bad boy timeout"
> (dansguardian.org/downloads/borman/dansguardian.pl) to work with
> smartfilter's logs. Has anyone out in squid land done this? I was planning
> to search the logs for IP address if users that get blocked with the reason
> code of 149 (porn) or 132 (nudity) or 162 (sexual materials) or 113
> (extreme). If they got blocked more than X (maybe 5) times in 30 min. their
> IP address/32 would be added to the not_allow list used by squid and then
> the program would issue a "squid -k reconfigure" to update it to squid. I
> have already edited the ERR_ACCESS_DENIED file to notify the user why they
> don't have access and what to do (or not to do :-).
> Because I am not "a programmer" (I just smell link one) I wanted to see if
> this has been done or something else like it.
> > That is an issue in DA 4.0, Securecomputing admits it's a problem. I see
> > it
> > quite frequently. No fix yet. If you pay support, email them at
> > support@securecomputing.com, maybe it will get them moving.
> >
> > I've seen what you described and also getting just a Blank page with the
> > address of the proxy/filter for controlcenter.
> >
> > Only 4.0 allows you to do delegated authority, they have a newer version
> > 4.1,
> > but it doesn't give you this capablity.
> >
> > Becareful with stable3 if your running redhat. I think an update of an
> > rpm
> > corrupted my squid. Had to upgrade to stable 10, it doesn't run as an rpm
> > so
> > it gets a little weird on the install.
> >
> > Let me know if we can share anything we have learned.
> >
> >> Are you also having problems with links returning the wrong address? I
> >> click on one link and get blocked and the link is not the one I selected.
> >> I
> >> re-select the link and it will then go through.
> >
> >
> >> > What version of Smartfilter are you using, have noticed issues with our
> >> > installation of Smartfilter Bess Edition 4.0 that sometimes does not
> >> > place
> >> > a
> >> > block on the site. I have a ticket open with securecomputing.
> >> >
> >> >> I am using squid-2.5.STABLE3-6.3E.9.i386 with smartfilter and I am
> >> >> having
> >> >> a
> >> >> problem and need help tracking it down. After a restart or squid -k
> >> >> reconfigure everything works fine for a while (5 -10 hours depending
> >> >> on
> >> >> the
> >> >> load) then problems. Access seems to slow down and requests are not
> >> >> filtered.
> >> >
> >> >> access.log before squid -k reconfigure:
> >> >
> >> >> 1126801058.510 1149 71.32.59.249 TCP_MISS/200 37693 GET
> >> >> http://www.playboy.com/ - DIRECT/216.163.137.3 text/html
> >> >
> >> >> access.log after squid -k reconfigure:
> >> >
> >> >> 1126801199.263 26 71.32.59.249 TCP_MISS/000 411 GET
> >> >> http://www.playboy.com/ - NONE/- -
> >> >
> >> >
> >> >> as it should be. Any ideas on how I can track down the problem or
> >> >> what I
> >> >> should be looking at?
> >> >
Received on Fri Sep 16 2005 - 11:42:32 MDT
This archive was generated by hypermail pre-2.1.9 : Sat Oct 01 2005 - 12:00:03 MDT