Re: [squid-users] Squid with SquidGuard

Mark Elsen wrote:

> So , are you really sure, that the one user who is defined as :
>
> cache_effective_user
>
> in squid.conf, can execute :
>
> /usr/local/squidguard/bin/squidGuard
>
> ????-->> Double verify and again, if needed.
>
> M.
>
>
>
Hmmm. Well I *thought* I could. But see below:

[mark@localhost ~]$ su
Password:
[root@localhost mark]# cat /etc/squid/squid.conf | grep cache_effective
# TAG: cache_effective_user
# to UID to "squid". If you define cache_effective_user, but not
# cache_effective_group, Squid sets the GID to the effective
# cache_effective_user.
#cache_effective_user squid
cache_effective_user squid
# TAG: cache_effective_group
#cache_effective_group squid
cache_effective_group squid

Then:

[root@localhost mark]# sudo -u squid /usr/sbin/squid -NCd 1
2006/01/26 18:47:49| strtokFile: /usr/share/squid/ads not found
2006/01/26 18:47:49| aclParseAclLine: WARNING: empty ACL: acl ad_sites
dstdomain "/usr/share/squid/ads"
2006/01/26 18:47:49| Starting Squid Cache version 2.5.STABLE11 for
i386-redhat-linux-gnu...
2006/01/26 18:47:49| Process ID 5028
2006/01/26 18:47:49| With 1024 file descriptors available
2006/01/26 18:47:49| Performing DNS Tests...
2006/01/26 18:47:49| Successful DNS name lookup tests...
2006/01/26 18:47:49| DNS Socket created at 0.0.0.0, port 32789, FD 4
2006/01/26 18:47:49| Adding nameserver 192.168.123.254 from /etc/resolv.conf
2006/01/26 18:47:49| helperOpenServers: Starting 5 'squidGuard' processes
2006/01/26 18:47:50| User-Agent logging is disabled.
2006/01/26 18:47:50| Referer logging is disabled.
2006/01/26 18:47:50| Unlinkd pipe opened on FD 14
2006/01/26 18:47:50| Swap maxSize 102400 KB, estimated 7876 objects
2006/01/26 18:47:50| Target number of buckets: 393
2006/01/26 18:47:50| Using 8192 Store buckets
2006/01/26 18:47:50| Max Mem size: 8192 KB
2006/01/26 18:47:50| Max Swap size: 102400 KB
2006/01/26 18:47:50| Rebuilding storage in /var/spool/squid (CLEAN)
2006/01/26 18:47:50| Using Least Load store dir selection
2006/01/26 18:47:50| Set Current Directory to /var/spool/squid
2006/01/26 18:47:50| Loaded Icons.
2006/01/26 18:47:50| Accepting HTTP connections at 0.0.0.0, port 8080,
FD 16.
2006/01/26 18:47:50| Accepting ICP messages at 0.0.0.0, port 3130, FD 17.
2006/01/26 18:47:50| WCCP Disabled.
2006/01/26 18:47:50| /var/run/squid.pid: (1) Operation not permitted
FATAL: Could not write pid file

Wooahhh???

So:
[root@localhost mark]# ls -la /var/run/squi*
ls: /var/run/squi*: No such file or directory

Hmmm - Strange?
[root@localhost mark]# locate squid.pid
/var/run/squid.pid

So whatever squid.pid is or does it was there the last time updatedb was
run but it's not there now.

However, Squid did get past the point at which it launched squidGuard
(which seemed OK) before gracefully closing it. See squidGuard.log
(+note times):
 2006-01-26 18:47:50 [5031] squidGuard 1.2.0 started (1138301270.257)
2006-01-26 18:47:50 [5031] squidGuard ready for requests (1138301270.310)
2006-01-26 18:47:50 [5033] squidGuard 1.2.0 started (1138301270.275)
2006-01-26 18:47:50 [5033] squidGuard ready for requests (1138301270.311)
2006-01-26 18:47:50 [5029] squidGuard 1.2.0 started (1138301270.246)
2006-01-26 18:47:50 [5029] squidGuard ready for requests (1138301270.312)
2006-01-26 18:47:50 [5032] squidGuard 1.2.0 started (1138301270.290)
2006-01-26 18:47:50 [5032] squidGuard ready for requests (1138301270.313)
2006-01-26 18:47:50 [5030] squidGuard 1.2.0 started (1138301270.285)
2006-01-26 18:47:50 [5030] squidGuard ready for requests (1138301270.314)
2006-01-26 18:47:51 [5029] squidGuard stopped (1138301271.198)
2006-01-26 18:47:51 [5030] squidGuard stopped (1138301271.200)
2006-01-26 18:47:51 [5031] squidGuard stopped (1138301271.201)
2006-01-26 18:47:51 [5032] squidGuard stopped (1138301271.203)
2006-01-26 18:47:51 [5033] squidGuard stopped (1138301271.204)

Now running "/usr/sbin/squid -NCd 1" as root (*NOT* sudo -u squid) works
just fine (I am not posting the output, but I ran it at 19:07) and guess
what?:
[root@localhost mark]# ls -la /var/run/squid.pid
-rw-r--r-- 1 root squid 5 Jan 26 19:07 /var/run/squid.pid
[root@localhost mark]#

I'm *sure* this worked before however but (shrug) nevertheless - what
does it tell us?

Thanks again for all your help

Best regards

Mark