Filtrage des sites avec squidguard

leno · Février 20, 2016, 9:29pm

slt
je travaille sur debian lenny
j’ai installé squidGuard et la blacklist française et j’ai configuré mon fichier squidGuard.conf
le problème est qu’il n’y a pas de blocage des sites ayant une url ou une expression indiquée dans la blacklist
tout passe comme si j’ai pas configuré le squidGuard,quel est le role de la blacklist alors?
voici les étapes que j’ai fait pour configurer squidGuard:[code]
#apt-get install squidGuard

gunzip /usr/share/doc/squidguard/examples/squidGuard.cgi.gz

mv /usr/share/doc/squidguard/examples/squidGuard.cgi /usr/lib/cgi-bin/

chmod +x /usr/lib/cgi-bin/squidGuard.cgi

[/code]
j’ai téléchargé la blacklist francaise de:ftp://ftp.univ-tlse1.fr/pub/reseau/cache/squidguard_contrib/blacklists.tar.gz
puis j’ai fait:

#tar xvzf /tmp/blacklists.tar.gz -C /var/lib/squidguard/db/ #chown -R proxy: /var/lib/squidguard/db/ #/etc/init.d/squid stop #/etc/init.d/squid restart #cd /var/lib/squidguard/db/blacklists #ls –l ads -> publicite adult aggressive -> agressif agressif astrology audio-video blog cleaning dangerous_material dating drogue drugs -> drogue filehosting financial forums gambling games global_usage hacking liste_bu mail -> forums marketingware mixed_adult mobile-phone phishing porn -> adult proxy -> redirector publicite radio README reaffected redirector sect sexual_education shopping strict_redirector strong_redirector tricheur violence -> agressif warez webmail

#cd /var/lib/squidguard/db/ #chown -R proxy:proxy blacklists #squidGuard -C all
Voici mon fichier squidguard.conf:

[code]

/etc/squid/squidGuard.conf

dbhome /var/lib/squidguard/db
logdir /var/log/squid

Definition des sources :

src admin {
ip 127.0.0.1
}
src poste {
ip 192.168.0.50
}
src multipostes {
ip 192.168.3.1-192.168.3.254
}

Definition de la base de données de filtrage utilisée

dest adult {
domainlist blacklists/adult/domains
urllist blacklists/adult/urls
}
dest publicite {
domainlist blacklists/publicite/domains
urllist blacklists/publicite/urls
}
dest warez {
domainlist blacklists/warez/domains
urllist blacklists/warez/urls
}
dest porn {
domainlist blacklists/porn/domains
urllist blacklists/porn/urls
}

Definition des ACL

acl {
admin {
#pass all
pass !porn !adult !publicite !warez all
}
poste {
pass !porn !adult !publicite !warez all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
multipostes {
pass !porn !adult !publicite !warez all
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
default {
pass none
redirect http://127.0.0.1/cgi-bin/squidGuard.cgi?clientaddr=%a&srcclass=%s&targetclass=%t&url=%u
}
}

FIN /etc/squid/squidGuard.conf #[/code]

#/etc/init.d/squid restart
quelq’un peut m’aider svp?

fran.b · Février 20, 2016, 9:29pm

Pour tester squidGuard en local, tu fais

(vérifies les emplacement des fichiers /usr/bin/squidGuard et /etc/squid/squidGuard.conf (c’est peut être /usr/sbin/squidGuard)

Tu auras un truc genre

[quote]$ echo “http://sexideas.info/gallery/g183 192.168.1.2/- - GET” | /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
2010-02-02 00:42:02 [16959] /usr/bin/squidGuard: can’t write to logfile /var/log/squid/squidGuard.log
2010-02-02 00:42:02 [16959] destblock good missing active content, set inactive
2010-02-02 00:42:02 [16959] destblock local missing active content, set inactive
2010-02-02 00:42:02 [16959] init domainlist /var/lib/squidguard/db/adult/domains
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/adult/domains.db
2010-02-02 00:42:02 [16959] init urllist /var/lib/squidguard/db/adult/urls
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/adult/urls.db
2010-02-02 00:42:02 [16959] init domainlist /var/lib/squidguard/db/publicite/domains
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/publicite/domains.db
2010-02-02 00:42:02 [16959] init urllist /var/lib/squidguard/db/publicite/urls
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/publicite/urls.db
2010-02-02 00:42:02 [16959] init domainlist /var/lib/squidguard/db/warez/domains
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/warez/domains.db
2010-02-02 00:42:02 [16959] init urllist /var/lib/squidguard/db/warez/urls
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/warez/urls.db
2010-02-02 00:42:02 [16959] init domainlist /var/lib/squidguard/db/porn/domains
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/porn/domains.db
2010-02-02 00:42:02 [16959] init urllist /var/lib/squidguard/db/porn/urls
2010-02-02 00:42:02 [16959] loading dbfile /var/lib/squidguard/db/porn/urls.db
2010-02-02 00:42:02 [16959] /usr/bin/squidGuard: can’t write to logfile /var/log/squid/squidGuard.log
2010-02-02 00:42:02 [16959] squidGuard 1.2.0 started (1265067721.959)
2010-02-02 00:42:02 [16959] recalculating alarm in 26278 seconds
2010-02-02 00:42:02 [16959] squidGuard ready for requests (1265067722.012)
192.168.1.1/interdiction.html 192.168.1.2/- - GET
2010-02-02 00:42:02 [16959] squidGuard stopped (1265067722.013)
[/quote]si c’est bloqué et

[quote]echo “http://www.google.fr 192.168.1.2/- - GET” | /usr/bin/squidGuard -c /etc/squid/squidGuard.conf -d
2010-02-02 00:44:19 [16997] destblock good missing active content, set inactive
2010-02-02 00:44:19 [16997] destblock local missing active content, set inactive
2010-02-02 00:44:19 [16997] init domainlist /var/lib/squidguard/db/adult/domains
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/adult/domains.db
2010-02-02 00:44:19 [16997] init urllist /var/lib/squidguard/db/adult/urls
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/adult/urls.db
2010-02-02 00:44:19 [16997] init domainlist /var/lib/squidguard/db/publicite/domains
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/publicite/domains.db
2010-02-02 00:44:19 [16997] init urllist /var/lib/squidguard/db/publicite/urls
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/publicite/urls.db
2010-02-02 00:44:19 [16997] init domainlist /var/lib/squidguard/db/warez/domains
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/warez/domains.db
2010-02-02 00:44:19 [16997] init urllist /var/lib/squidguard/db/warez/urls
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/warez/urls.db
2010-02-02 00:44:19 [16997] init domainlist /var/lib/squidguard/db/porn/domains
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/porn/domains.db
2010-02-02 00:44:19 [16997] init urllist /var/lib/squidguard/db/porn/urls
2010-02-02 00:44:19 [16997] loading dbfile /var/lib/squidguard/db/porn/urls.db
2010-02-02 00:44:19 [16997] squidGuard 1.2.0 started (1265067859.612)
2010-02-02 00:44:19 [16997] recalculating alarm in 26141 seconds
2010-02-02 00:44:19 [16997] squidGuard ready for requests (1265067859.617)

2010-02-02 00:44:19 [16997] squidGuard stopped (1265067859.618)
[/quote]sinon
192.168.1.2 désigne la machine d’origine de la requête.