Re: [squid-users] How can I block a https site?

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Fri, 24 Oct 2008 00:13:30 +1300

Matus UHLAR - fantomas wrote:
>> Matus UHLAR - fantomas wrote:
>>> On 21.10.08 16:23, Alejandro Bednarik wrote:
>>>> You can also use url_regex -i
>>>>
>>>> acl bad_sites url_regex -i "/etc/squid/bad_sites.txt"
>>>> http_access deny bad_sites
>>> using regexes is very ineffective and may lead to problems if you don't
>>> count with:
>>> - dot matching ANY character
>>> - regex matching the middle of string, not just the end of it (like
>>> dstdomain does)
>
> On 22.10.08 23:45, Amos Jeffries wrote:
>> - URL parts often included in regex not occuring in CONNECT requests.
>> - neither the http(s):// part.
>
> no, but it can match different hosts it should not mach.
>
>>>>>> .imo.im
>
> will block e.g. www.limolimo.com
>

I think you misinterpret me.
I was adding to your list of reasons against that use of regex aka,
things to watch out for.

Amos

-- 
Please use Squid 2.7.STABLE4 or 3.0.STABLE9
Received on Thu Oct 23 2008 - 11:13:36 MDT

This archive was generated by hypermail 2.2.0 : Thu Oct 23 2008 - 12:00:04 MDT