Re: [squid-users] squidguard spyware log

From: Eliezer Croitoru <eliezer_at_ngtech.co.il>
Date: Sat, 11 Aug 2012 20:21:10 +0300

On 8/11/2012 8:06 PM, J Webster wrote:
> I see some logs of spyware sites being blocked by squidguard.
> I presume these are sites that have cross domain xml or javascript or
> other things built in.
> Will squidguard block the whole page even if there is one script in it
> that might be spyware?
>
> 2012-08-11 17:10:31 [3630] Request(default/spyware/-)
> http://won.images.streamray.com/images/streamray/won/jpg/m/6/milf36_150.jpg
> 93.23.197.116/- user GET $
> 2012-08-11 17:10:36 [3630] Request(default/spyware/-)
> http://graphics.streamray.com/crossdomain.xml 93.23.197.116/- user GET
> REDIRECT
>
> Is there a way to provide a page saying this site has malware and has
> been blocked rather than just the default block page?
> ie 2 different blocking html pages?
>
you should look at squidguard ACLs and you can ask at the squidguard
mailing list: squidguard_at_shalla.de
or:
http://www.squidguard.org/Doc/examples.html

Regards,
Eliezer

-- 
Eliezer Croitoru
https://www1.ngtech.co.il
IT consulting for Nonprofit organizations
eliezer <at> ngtech.co.il
Received on Sat Aug 11 2012 - 17:21:26 MDT

This archive was generated by hypermail 2.2.0 : Sat Aug 11 2012 - 12:00:03 MDT