Re: [squid-users] squid not using squidguard acl

From: b1 <forum_at_b1online.de>
Date: Tue, 30 Mar 2010 23:24:27 +0200

The dry run of squidGuard says that your url and domainlists are empty.
Can you check whether your .db files really contain data? It seems to me
that this no problem with squid using the redirector, but with the
redirector not having urls to block.
I would check the permissions of /usr/local/squidGuard/db to be sure
that the squiduser owns them.
Furthermore a squidGuard -dC all might show the problem.

Greetings

Benedikt

On Wed, 2010-03-31 at 01:03 +0500, Muhammad Sharfuddin wrote:
> squid 2.7STABLE5
> squidguard 1.4
> db berkeley 2.7
>
> all urls/domains I am trying to block via squidguard are accessible, it
> seems that squid is not using squidguard .. please help
>
> from squid.conf
>
> url_rewrite_program /usr/local/bin/squidGuard
> -c /usr/local/squidGuard/squidGuard.conf
> acl myipes src 192.168.0.233/32
> acl myipes src 192.168.0.200/32
> http_access allow nds
>
>
> from squidguard.conf
>
> dbhome /usr/local/squidGuard/db
> logdir /usr/local/squidGuard/logs
>
> dest music {
> domainlist music/domains
> urllist music/urls
> }
> dest porn {
> domainlist porn/domains
> urllist porn/urls
> }
> acl {
> default {
> pass !music !porn all
> redirect http://192.168.0.233/block.html
> }
> }
>
> following is the dry run output
>
> echo "http://www.music.com 192.168.0.233/ - - GET" | squidGuard
> -c /usr/local/squidGuard/squidGuard.conf -d
> 2010-03-30 17:55:42 [5400] New setting: dbhome: /usr/local/squidGuard/db
> 2010-03-30 17:55:42 [5400] New setting:
> logdir: /usr/local/squidGuard/logs
> 2010-03-30 17:55:42 [5400] init
> domainlist /usr/local/squidGuard/db/music/domains
> 2010-03-30 17:55:42 [5400] loading
> dbfile /usr/local/squidGuard/db/music/domains.db
> 2010-03-30 17:55:42 [5400] domainlist empty, removed from memory
> 2010-03-30 17:55:42 [5400] init
> urllist /usr/local/squidGuard/db/music/urls
> 2010-03-30 17:55:42 [5400] loading
> dbfile /usr/local/squidGuard/db/music/urls.db
> 2010-03-30 17:55:42 [5400] urllist empty, removed from memory
> 2010-03-30 17:55:42 [5400] init
> domainlist /usr/local/squidGuard/db/porn/domains
> 2010-03-30 17:55:42 [5400] loading
> dbfile /usr/local/squidGuard/db/porn/domains.db
> 2010-03-30 17:55:42 [5400] domainlist empty, removed from memory
> 2010-03-30 17:55:42 [5400] init
> urllist /usr/local/squidGuard/db/porn/urls
> 2010-03-30 17:55:42 [5400] loading
> dbfile /usr/local/squidGuard/db/porn/urls.db
> 2010-03-30 17:55:42 [5400] urllist empty, removed from memory
> 2010-03-30 17:55:42 [5400] squidGuard 1.4 started (1269953742.464)
> 2010-03-30 17:55:42 [5400] squidGuard ready for requests
> (1269953742.474)
> 2010-03-30 17:55:42 [5400] source not found
> 2010-03-30 17:55:42 [5400] no ACL matching source, using default
>
> 2010-03-30 17:55:42 [5400] squidGuard stopped (1269953742.475)
>
> and nothing special in squid and squidguard logs
Received on Tue Mar 30 2010 - 21:24:34 MDT

This archive was generated by hypermail 2.2.0 : Wed Mar 31 2010 - 12:00:06 MDT