Difference between revisions of "SquidGuard"
m (Reboot should also be an event) |
Unnilennium (talk | contribs) |
||
| (13 intermediate revisions by 7 users not shown) | |||
| Line 5: | Line 5: | ||
J Bennett has packaged squidguard into a sme server compatible application. | J Bennett has packaged squidguard into a sme server compatible application. | ||
| − | If you have not installed the Dag repository please follow this instruction. | + | If you have not installed the Dag repository please follow this instruction.<br /> |
| + | |||
| + | You need to activate the [[Dag]] reposity before installing this contrib.<br /> | ||
| − | Download smeserver-squidguard-1.0- | + | see [[dag|dag repository]] <br /> |
| − | wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0- | + | |
| + | |||
| + | Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server | ||
| + | wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm | ||
cd to the folder on your sme server where smeserver-squidguard is located and do | cd to the folder on your sme server where smeserver-squidguard is located and do | ||
| Line 14: | Line 19: | ||
yum localinstall smeserver-squidguard*.rpm --enablerepo=dag | yum localinstall smeserver-squidguard*.rpm --enablerepo=dag | ||
| − | That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). | + | That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command. |
| + | db yum_repositories show dag | ||
| + | |||
| + | If you run this command the resulting output should look like: | ||
| + | dag=repository | ||
| + | BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag | ||
| + | EnableGroups=no | ||
| + | Exclude=freetype,htop,iptraf,rsync,syslinux | ||
| + | GPGCheck=yes | ||
| + | GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt | ||
| + | Name=Dag - EL5 | ||
| + | Visible=no | ||
| + | status=disabled | ||
After installing the packages you must do | After installing the packages you must do | ||
| Line 21: | Line 38: | ||
This will restart your server. The web interface will not work if you fail to do the above commands. | This will restart your server. The web interface will not work if you fail to do the above commands. | ||
| − | + | Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard. | |
| − | |||
| − | + | There is a DB command to configure the blacklist. | |
| + | The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz | ||
| + | If you would like to confirm the the current blacklist site used. | ||
config show squidguard | config show squidguard | ||
| − | config setprop squidguard Blacklist http:// | + | |
| + | Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this. | ||
| + | |||
| + | config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz | ||
The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard. | The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard. | ||
| Line 55: | Line 76: | ||
Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745 | Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745 | ||
| − | |||
====References==== | ====References==== | ||
Squidguard Homepage: http://www.squidguard.org/ | Squidguard Homepage: http://www.squidguard.org/ | ||
| − | |||
---- | ---- | ||
[[Category:Howto]] | [[Category:Howto]] | ||
| + | [[Category:Administration:Content Spam Virus Blocking]] | ||
| + | [[Category:Contrib:webfiltering]] | ||
Revision as of 20:02, 24 April 2018
SquidGuard
smeserver packaged version
J Bennett has packaged squidguard into a sme server compatible application.
If you have not installed the Dag repository please follow this instruction.
You need to activate the Dag reposity before installing this contrib.
see dag repository
Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server
wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm
cd to the folder on your sme server where smeserver-squidguard is located and do
yum localinstall smeserver-squidguard*.rpm --enablerepo=dag
That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command.
db yum_repositories show dag
If you run this command the resulting output should look like:
dag=repository BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag EnableGroups=no Exclude=freetype,htop,iptraf,rsync,syslinux GPGCheck=yes GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt Name=Dag - EL5 Visible=no status=disabled
After installing the packages you must do
signal-event post-upgrade signal-event reboot
This will restart your server. The web interface will not work if you fail to do the above commands.
Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard.
There is a DB command to configure the blacklist. The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz
If you would like to confirm the the current blacklist site used.
config show squidguard
Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this.
config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz
The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard.
Use the content filtering panel in server-manager, to add entries. You have trusted and untrusted (domains, urls, expressions). Add your entries, then restart squid with
/etc/rc7.d/S90squid stop /etc/rc7.d/S90squid start
You will know when things are ready when you see this in the /var/log/squidguard/squidguard.log file:
2007-03-18 17:14:54 [3687] squidGuard 1.2.0 started (1174256093.054)
2007-03-18 17:14:54 [3687] squidGuard ready for requests (1174256094.968)
See advice of mrjhb3 here:
http://forums.contribs.org/index.php?topic=36217.msg160088#msg160088
Previous version package information
Information about a previous version of squidguard is here:
URL redirector used to use blacklists with the proxysoftware Squid.
Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745
References
Squidguard Homepage: http://www.squidguard.org/
