Difference between revisions of "SquidGuard"

From SME Server
Jump to navigationJump to search
m
(7 intermediate revisions by 3 users not shown)
Line 5: Line 5:
 
J Bennett has packaged squidguard into a sme server compatible application.
 
J Bennett has packaged squidguard into a sme server compatible application.
  
If you have not installed the Dag repository please follow this instruction.  
+
If you have not installed the Dag repository please follow this instruction.<br />
{{Repository|Dag}}
+
 +
You need to activate the [[Dag]] reposity before installing this contrib.<br />
 +
 
 +
see [[dag|dag repository]] <br />
 +
 
  
 
Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server
 
Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server
  wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-34.noarch.rpm  
+
  wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm  
  
 
cd to the folder on your sme server where smeserver-squidguard is located and do
 
cd to the folder on your sme server where smeserver-squidguard is located and do
Line 15: Line 19:
 
  yum localinstall smeserver-squidguard*.rpm --enablerepo=dag
 
  yum localinstall smeserver-squidguard*.rpm --enablerepo=dag
  
That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled).
+
That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command.
 +
db yum_repositories show dag
 +
 
 +
If you run this command the resulting output should look like:
 +
    dag=repository
 +
    BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag
 +
    EnableGroups=no
 +
    Exclude=freetype,htop,iptraf,rsync,syslinux
 +
    GPGCheck=yes
 +
    GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt
 +
    Name=Dag - EL5
 +
    Visible=no
 +
    status=disabled
  
 
After installing the packages you must do
 
After installing the packages you must do
Line 22: Line 38:
 
This will restart your server. The web interface will not work if you fail to do the above commands.
 
This will restart your server. The web interface will not work if you fail to do the above commands.
  
Then use the server manager panel to control it all. There is a DB command to configure the blacklist.
+
Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard.  
 +
 
 +
There is a DB command to configure the blacklist.
 
The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz  
 
The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz  
  
If you wish to change the default blacklist to something else do (for example)
+
If you would like to confirm the  the current blacklist site used.
 +
config show squidguard
 +
 
 +
Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this.
  
config show squidguard
 
 
  config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz
 
  config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz
  
Line 64: Line 84:
 
[[Category:Howto]]
 
[[Category:Howto]]
 
[[Category:Administration:Content Spam Virus Blocking]]
 
[[Category:Administration:Content Spam Virus Blocking]]
 +
[[Category:Contrib:webfiltering]]

Revision as of 20:02, 24 April 2018

SquidGuard

smeserver packaged version

J Bennett has packaged squidguard into a sme server compatible application.

If you have not installed the Dag repository please follow this instruction.

You need to activate the Dag reposity before installing this contrib.

see dag repository


Download smeserver-squidguard-1.0-34.noarch.rpm to a folder on your sme server

wget http://mirror.contribs.org/contribs/jbennett/sme7/squidguard/RPMS/smeserver-squidguard-1.0-35.noarch.rpm 

cd to the folder on your sme server where smeserver-squidguard is located and do

yum localinstall smeserver-squidguard*.rpm --enablerepo=dag

That should install the correct package and any dependency rpms it requires. You must have the dag repository configured on your sme server (with status=disabled). You can see the status with this command.

db yum_repositories show dag

If you run this command the resulting output should look like:

   dag=repository
   BaseURL=http://apt.sw.be/redhat/el5/en/$basearch/dag
   EnableGroups=no
   Exclude=freetype,htop,iptraf,rsync,syslinux
   GPGCheck=yes
   GPGKey=http://dag.wieers.com/packages/RPM-GPG-KEY.dag.txt
   Name=Dag - EL5
   Visible=no
   status=disabled

After installing the packages you must do

signal-event post-upgrade
signal-event reboot

This will restart your server. The web interface will not work if you fail to do the above commands.

Once you log into the server manager panel a new menu item will have been added with a main heading of JohnBennettServices with a sub topic Content Filtering. Click here to administer and fine tune Squidguard.

There is a DB command to configure the blacklist. The default blacklist location is http://ftp.ost.eltele.no/pub/www/proxy/squidGuard/contrib/blacklists.tar.gz

If you would like to confirm the the current blacklist site used.

config show squidguard

Currently the install above installs a blacklist site that does not seem to be active. So you might want to investigate another blacklist site, than the default one that is installed. If you wish to change the default blacklist to something else for example, use a command like this.

config setprop squidguard Blacklist http://www.shallalist.de/Downloads/shallalist.tar.gz

The supdate script will convert the lists to *.db files which load a lot faster when stopping and starting squidguard.

Use the content filtering panel in server-manager, to add entries. You have trusted and untrusted (domains, urls, expressions). Add your entries, then restart squid with

/etc/rc7.d/S90squid stop
/etc/rc7.d/S90squid start

You will know when things are ready when you see this in the /var/log/squidguard/squidguard.log file:

2007-03-18 17:14:54 [3687] squidGuard 1.2.0 started (1174256093.054)

2007-03-18 17:14:54 [3687] squidGuard ready for requests (1174256094.968)


See advice of mrjhb3 here:

http://forums.contribs.org/index.php?topic=36217.msg160088#msg160088

Previous version package information

Information about a previous version of squidguard is here:

URL redirector used to use blacklists with the proxysoftware Squid.

Mini Howto: http://forums.contribs.org/index.php?topic=34337.msg151745#msg151745

References

Squidguard Homepage: http://www.squidguard.org/