You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain "/etc/squid/squid-block.acl"
http_access deny blocksites
One other suggestion would be to block by filetype and not just file
extension.
Thomas J. Raef
e-Based Security, LLC
www.ebasedsecurity.com
1-866-838-6108
"You're either hardened, or you're hacked!"
> -----Original Message-----
> From: Tarak Ranjan [mailto:tarak.ranjan@liqwidkrystal.com]
> Sent: Thursday, November 01, 2007 2:47 AM
> To: squid-users@squid-cache.org
> Subject: [squid-users] transparent Proxy
>
> Hi List,
> I'm new to this list. i have a question about transparent
> proxy. if i apply an ACL for downloading mp3 and mpeg. but it's not
> working, user's are able to download mp3 or mpeg...
> here is my config..squid.conf file.
>
> port 8080
> acl blocksites url_regex "/etc/squid/squid-block.acl"
>
> "quid-block.acl"
> .meebo.coms
> .sex.com
>
> acl blockfiles urlpath_regex "/etc/squid/multimedia.files.acl"
>
> "multimedia.files.acl"
> \.[Aa][Vv][Ii]$
> \.[Mm][Pp][Gg]$
> \.[Mm][Pp][Ee][Gg]$
> \.[Mm][Pp]3$
>
> please guide me if there is anything wrong
>
> --
>
> Thanks & Regards,
> ______________
> Tarak Ranjan
> IS-Team
>
> Liqwid Krystal
>
> E: tarak.ranjan@liqwidkrystal.com
> IM: reachtarak@hotmail.com
>
> Online Learning|Certification|Learning Solutions--- Visit:
> www.liqwidkrystal.com
>
Received on Thu Nov 01 2007 - 04:20:02 MDT
This archive was generated by hypermail pre-2.1.9 : Sat Dec 01 2007 - 12:00:01 MST