Difference between revisions of "SquidGuard"

From SME Server
Jump to navigationJump to search
m (Reboot should also be an event)
 
(14 intermediate revisions by 8 users not shown)
Line 1: Line 1:
 +
{{Warning box|this content is outdated, and while there is some interesting feature in this contrib, you can find a more recently maintained contrib called [[WebFilter]] using squidguard with a panel available.}}
 +
 
===SquidGuard===
 
===SquidGuard===
  
Line 5: Line 7:
 
J Bennett has packaged squidguard into a sme server compatible application.
 
J Bennett has packaged squidguard into a sme server compatible application.
  
If you have not installed the Dag repository please follow this instruction. {{Repository|Dag}}
+
If you have not installed the Dag repository please follow this instruction.<br />
 +
 +
You need to activate the [[Dag]] reposity before installing this contrib.<br />
 +
 
 +
see [[dag|dag repository]] <br />
 +
 
  
Download smeserver-squidguard-1.0-22.noarch.rpm to a folder on your sme server
+
Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server
  wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-22.noarch.rpm  
+
  wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm  
  
 
cd to the folder on your sme server where smeserver-squidguard is located and do
 
cd to the folder on your sme server where smeserver-squidguard is located and do
Line 14: Line 21:
 
  yum localinstall smeserver-squidguard*.rpm --enablerepo=dag
 
  yum localinstall smeserver-squidguard*.rpm --enablerepo=dag
  
That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled).
+
That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command.
 +
db yum_repositories show dag
 +
 
 +
If you run this command the resulting output should look like:
 +
    dag=repository
 +
    BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag
 +
    EnableGroups=no
 +
    Exclude=freetype,htop,iptraf,rsync,syslinux
 +
    GPGCheck=yes
 +
    GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt
 +
    Name=Dag - EL5
 +
    Visible=no
 +
    status=disabled
  
 
After installing the packages you must do
 
After installing the packages you must do
Line 21: Line 40:
 
This will restart your server. The web interface will not work if you fail to do the above commands.
 
This will restart your server. The web interface will not work if you fail to do the above commands.
  
Then use the server manager panel to control it all. There is a DB command to configure the blacklist.
+
Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard.  
The default blacklist location is ftp://ftp.teledanmark.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz
 
  
If you wish to change the default blacklist to something else do (for example)
+
There is a DB command to configure the blacklist.
 +
The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz
  
 +
If you would like to confirm the  the current blacklist site used.
 
  config show squidguard
 
  config show squidguard
  config setprop squidguard Blacklist http://squidguard.shalla.de/Downloads/shallalist.tar.gz
+
 
 +
Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this.
 +
 
 +
  config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz
  
 
The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard.
 
The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard.
Line 55: Line 78:
  
 
Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745
 
Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745
 
  
 
====References====
 
====References====
  
 
Squidguard Homepage: http://www.squidguard.org/
 
Squidguard Homepage: http://www.squidguard.org/
 
  
 
----
 
----
[[Category:Howto]]
+
[[Category:Administration:Content Spam Virus Blocking]]
 +
[[Category:Contrib:webfiltering]]
 +
[[Category:Deprecated Contrib]]

Latest revision as of 03:46, 27 May 2022

Warning.png Warning:
this content is outdated, and while there is some interesting feature in this contrib, you can find a more recently maintained contrib called WebFilter using squidguard with a panel available.


SquidGuard

smeserver packaged version

J Bennett has packaged squidguard into a sme server compatible application.

If you have not installed the Dag repository please follow this instruction.

You need to activate the Dag reposity before installing this contrib.

see dag repository


Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server

wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm 

cd to the folder on your sme server where smeserver-squidguard is located and do

yum localinstall smeserver-squidguard*.rpm --enablerepo=dag

That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command.

db yum_repositories show dag

If you run this command the resulting output should look like:

   dag=repository
   BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag
   EnableGroups=no
   Exclude=freetype,htop,iptraf,rsync,syslinux
   GPGCheck=yes
   GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt
   Name=Dag - EL5
   Visible=no
   status=disabled

After installing the packages you must do

signal-event post-upgrade
signal-event reboot

This will restart your server. The web interface will not work if you fail to do the above commands.

Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard.

There is a DB command to configure the blacklist. The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz

If you would like to confirm the the current blacklist site used.

config show squidguard

Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this.

config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz

The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard.

Use the content filtering panel in server-manager, to add entries. You have trusted and untrusted (domains, urls, expressions). Add your entries, then restart squid with

/etc/rc7.d/S90squid stop
/etc/rc7.d/S90squid start

You will know when things are ready when you see this in the /var/log/squidguard/squidguard.log file:

2007-03-18 17:14:54 [3687] squidGuard 1.2.0 started (1174256093.054)

2007-03-18 17:14:54 [3687] squidGuard ready for requests (1174256094.968)


See advice of mrjhb3 here:

http://forums.contribs.org/index.php?topic=36217.msg160088#msg160088

Previous version package information

Information about a previous version of squidguard is here:

URL redirector used to use blacklists with the proxysoftware Squid.

Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745

References

Squidguard Homepage: http://www.squidguard.org/