Re: [e-smith-devinfo] SquidGuard
-Original Message- Darrell May <[EMAIL PROTECTED]> wrote: >Thank you very much :-) That was excellent information! >Also, there is mention that transproxy is needed. Do you know >where I would find or how I would implement this or is e-smith >transproxy enabled already? E-Smith is not transproxy enabled, as far as I now. Transproxy is an additional module someone (Charlie Brady? Are you the author, aren't you?) wrote to redirect all web requests through Squid transparently, without the need to configure every browser on every client machine. It's needed to be certain (well, more certain than not) that the clients use the squid proxy, that in turn is filtered by squidGuard... If I understand well, Transproxy consists in an additional config fragment for ipchains. Anyway, if you load the Matthijs .htm instructions file in a browser, you'll find that the links to the various packages are active and will bring you to the download sites. If you want more updated filtering databases, you can overwrite the squidGuard package ones with the blackists.tar.gz available at the squidGuard site (www.squidguard.org). -- Pierluigi Miranda
RE: [e-smith-devinfo] SquidGuard
Charlie Brady wrote: > No, you'll need e-smith-transproxy-0.3-1.noarch.rpm. It > should be up in my > contrib directory, but isn't. It should be later today. > Thanks Charlie :-) Regards, Darrell
Re: [e-smith-devinfo] SquidGuard
On Fri, 23 Mar 2001, Charlie Brady wrote: > On Fri, 23 Mar 2001, Tim Litwiller wrote: > > > so is the e-smith-transproxy-0.2-3.noarch.rpm ok to use with 4.1.1 ? > > No, you'll need e-smith-transproxy-0.3-1.noarch.rpm. It should be up in my > contrib directory, but isn't. It should be later today. Actually, I lied. It is there. (Hint to self, don't look in the i386 directory for a noarch rpm!) Charlie Brady [EMAIL PROTECTED] http://www.e-smith.org (development) http://www.e-smith.com (corporate) Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada
RE: [e-smith-devinfo] SquidGuard
Don't know of open source one, but Igear from Symantec is really good, but very expensive. It will run on an e-smith box no problem with just a few alterations. (disable squid, put a symbolic link in so it loads at start-up and install Charlie's transproxy rpm. You also need to make it run on port 3128 which can be done in its own web manager.) Philip -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 21 March 2001 12:05 To: [EMAIL PROTECTED] Subject: Re: [e-smith-devinfo] SquidGuard If you want to go commercial and choose an NT machine (ouch) to do only that part of the job, it's fairly easy. Have a look at www.mimesweeper.com and check out their websweeper product. You can configure it to not load web-sites and pages that have certain words on them. Does anyone know of an open source tool to do the same on Linux? Joost Darrell May <[EMAIL PROTECTED]> 21-03-2001 01:34 To: "e-smith-devinfo \(E-mail\)" <[EMAIL PROTECTED]> cc: Subject:[e-smith-devinfo] SquidGuard I have a potential client, a Christian School, looking at e-smith. One of their requirements is blocking access to inappropriate content/web sites. Is anyone using SquidGuard with e-smith or is there an e-smith-squidguard rpm and HowTo somewhere? Regards, Darrell May DMC NETSOURCED.COM 9912 Lougheed Highway, Burnaby, BC, Canada V3J 1N3 Phone: (604) 420-1362 * Fax: (604) 552-8833 E-mail: [EMAIL PROTECTED] Website: http://netsourced.com -- This list is archived To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- This list is archived To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [e-smith-devinfo] SquidGuard
Pierluigi Miranda wrote: > I'm using transproxy/squidGuard on my 4.0.1 gateway. It works > well, and > constitutes a good deterrent measure. > Thanks Pierluigi. I haven't looked into this in depth but would you mind forwarding a HowTo for installing and setting up transproxy/squidGuard on e-smith. Thanks in advance for all your help. Regards, Darrell
RE: [e-smith-devinfo] SquidGuard
Pierluigi Miranda wrote > I don't want to clutter the list, so I am sending you in > private both the > original Matthijs' instructions and the module I modified... > if someone else > is interested, I'll post them somewhere :) > Thank you very much :-) That was excellent information! Also, there is mention that transproxy is needed. Do you know where I would find or how I would implement this or is e-smith transproxy enabled already? Darrell
RE: [e-smith-devinfo] SquidGuard
Charlie Brady wrote: I've copied his squidGuard SRPMS into my contrib > directory on ftp.e-smith.org. They'll show up there overnight. > Thanks Charlie :-) Darrell
Re: [e-smith-devinfo] SquidGuard
If you want to go commercial and choose an NT machine (ouch) to do only that part of the job, it's fairly easy. Have a look at www.mimesweeper.com and check out their websweeper product. You can configure it to not load web-sites and pages that have certain words on them. Does anyone know of an open source tool to do the same on Linux? Joost Darrell May <[EMAIL PROTECTED]> 21-03-2001 01:34 To: "e-smith-devinfo \(E-mail\)" <[EMAIL PROTECTED]> cc: Subject:[e-smith-devinfo] SquidGuard I have a potential client, a Christian School, looking at e-smith. One of their requirements is blocking access to inappropriate content/web sites. Is anyone using SquidGuard with e-smith or is there an e-smith-squidguard rpm and HowTo somewhere? Regards, Darrell May DMC NETSOURCED.COM 9912 Lougheed Highway, Burnaby, BC, Canada V3J 1N3 Phone: (604) 420-1362 * Fax: (604) 552-8833 E-mail: [EMAIL PROTECTED] Website: http://netsourced.com -- This list is archived To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [e-smith-devinfo] SquidGuard
so is the e-smith-transproxy-0.2-3.noarch.rpm ok to use with 4.1.1 ? Darrell May wrote: > Pierluigi Miranda wrote: > > E-Smith is not transproxy enabled, as far as I now. Transproxy is an > > additional module someone (Charlie Brady? Are you the author, > > aren't you?) > > > Yes I found a transproxy rpm in Charlie's config area: > > e-smith-transproxy-0.2-3.noarch.rpm > > No idea what e-smith version this is for or if it will work on 4.1.1? > Charlie, would you take a moment to comment please. > > > for ipchains. Anyway, if you load the Matthijs .htm > > instructions file in a > > browser, you'll find that the links to the various packages > > are active and > > will bring you to the download sites. > > Yes, thanks, I downloaded all these links. > > BerkleyDB-2.7.7-1.i386.rpm > e-smith-squidguard-0.2-3.htm > e-smith-squidGuard-0.2-3.noarch.rpm > e-smith-squidGuard-dbads-010313-1.noarch.rpm > e-smith-squidGuard-dbaggressive-010313-1.noarch.rpm > e-smith-squidGuard-dbaudio-video-010313-1.noarch.rpm > e-smith-squidGuard-dbdrugs-010313-1.noarch.rpm > e-smith-squidGuard-dbgambling-010313-1.noarch.rpm > e-smith-squidGuard-dbhacking-010313-1.noarch.rpm > e-smith-squidGuard-dbporn-010313-1.noarch.rpm > e-smith-squidGuard-dbviolence-010313-1.noarch.rpm > e-smith-squidGuard-dbwarez-010313-1.noarch.rpm > e-smith-transproxy-0.2-3.noarch.rpm > squidGuard-1.1.4-2.i386.rpm > > Have I got everything I need? > I'll try an install this weekend and let you know my results. > If it works I'll post a HowTo on my site for all. > > Thanks again for all your assistance and for sending me the above > noted instructions. > > Regards, > > Darrell > > -- > This list is archived > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED]
Re: [e-smith-devinfo] SquidGuard
On Tue, Mar 20, 2001 at 11:37:44PM -0500, Charlie Brady <[EMAIL PROTECTED]> wrote: > > On Tue, 20 Mar 2001, Darrell May wrote: > > > I have a potential client, a Christian School, looking at e-smith. > > One of their requirements is blocking access to inappropriate > > content/web sites. Darrell, don't forget you will also want e-smith-transproxy to redirect web requests via squid. I'm not sure if this has been tested on 4.1 > There is no way to block access to inappropriate content/web sites. There > are ways to block access to _some_ such content, but that's about it. > [...] Sssh, don't tell the Australian government :-)http://www.efa.org.au Seriously, the only way to attempt content blocking is to have a "White" list of allowable sites. Which makes the web somewhat useless. Someone needs to maintain this list and add "appropriate" sites. "Black" lists are easily circumvented - many, many content filters don't stop you going to the IP address of the site :-) And as soon as you allow access to search engines, all bets are off. But, anyway, I'm sure this isn't news to anyone... Gordon -- Gordon Rowell [EMAIL PROTECTED] http://www.e-smith.org (development) http://www.e-smith.com (corporate) Phone: +61 (0418) 467 366 Fax: +1 (613) 564 7739 e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada
Re: [e-smith-devinfo] SquidGuard
Darrell May <[EMAIL PROTECTED]> wrote: >Yes, thanks, I downloaded all these links. > >BerkleyDB-2.7.7-1.i386.rpm >e-smith-squidguard-0.2-3.htm >e-smith-squidGuard-0.2-3.noarch.rpm >e-smith-squidGuard-dbads-010313-1.noarch.rpm >e-smith-squidGuard-dbaggressive-010313-1.noarch.rpm >e-smith-squidGuard-dbaudio-video-010313-1.noarch.rpm >e-smith-squidGuard-dbdrugs-010313-1.noarch.rpm >e-smith-squidGuard-dbgambling-010313-1.noarch.rpm >e-smith-squidGuard-dbhacking-010313-1.noarch.rpm >e-smith-squidGuard-dbporn-010313-1.noarch.rpm >e-smith-squidGuard-dbviolence-010313-1.noarch.rpm >e-smith-squidGuard-dbwarez-010313-1.noarch.rpm >e-smith-transproxy-0.2-3.noarch.rpm >squidGuard-1.1.4-2.i386.rpm > >Have I got everything I need? Yessir! :) An additional note: if you want, you can precompile the databases for faster loading during startup (the blacklists file from squidGuard site contains precompiled databases, Matthijs files did not, at least until the last time I downloaded them). Precompiled files have a drawback, of course: BerkeleyDB loads them if it finds them, ignoring the ASCII version, so if you need to modify a database you have to recompile. Inserting an entry in a database is a matter of appending a line to the right file, and can be done with no more than an 'echo string>>filename' command, so there's a decision to make. I choosed to always precompile the blacklists/Matthijs databases, that are the largest ones, leaving the two "custom" trusted/untrusted databases in plain ASCII. If you don't understand what I'm talking about, please have a look at the squidGuard documentation on www.squidguard.org: it's way more clear and explicative than I could ever manage to be :) -- Pierluigi Miranda
RE: [e-smith-devinfo] SquidGuard
Pierluigi Miranda wrote: > E-Smith is not transproxy enabled, as far as I now. Transproxy is an > additional module someone (Charlie Brady? Are you the author, > aren't you?) Yes I found a transproxy rpm in Charlie's config area: e-smith-transproxy-0.2-3.noarch.rpm No idea what e-smith version this is for or if it will work on 4.1.1? Charlie, would you take a moment to comment please. > for ipchains. Anyway, if you load the Matthijs .htm > instructions file in a > browser, you'll find that the links to the various packages > are active and > will bring you to the download sites. Yes, thanks, I downloaded all these links. BerkleyDB-2.7.7-1.i386.rpm e-smith-squidguard-0.2-3.htm e-smith-squidGuard-0.2-3.noarch.rpm e-smith-squidGuard-dbads-010313-1.noarch.rpm e-smith-squidGuard-dbaggressive-010313-1.noarch.rpm e-smith-squidGuard-dbaudio-video-010313-1.noarch.rpm e-smith-squidGuard-dbdrugs-010313-1.noarch.rpm e-smith-squidGuard-dbgambling-010313-1.noarch.rpm e-smith-squidGuard-dbhacking-010313-1.noarch.rpm e-smith-squidGuard-dbporn-010313-1.noarch.rpm e-smith-squidGuard-dbviolence-010313-1.noarch.rpm e-smith-squidGuard-dbwarez-010313-1.noarch.rpm e-smith-transproxy-0.2-3.noarch.rpm squidGuard-1.1.4-2.i386.rpm Have I got everything I need? I'll try an install this weekend and let you know my results. If it works I'll post a HowTo on my site for all. Thanks again for all your assistance and for sending me the above noted instructions. Regards, Darrell
Re: [e-smith-devinfo] SquidGuard
Darrell May <[EMAIL PROTECTED]> wrote: >Thanks Pierluigi. I haven't looked into this in depth but would >you mind forwarding a HowTo for installing and setting up >transproxy/squidGuard on e-smith. I don't want to clutter the list, so I am sending you in private both the original Matthijs' instructions and the module I modified... if someone else is interested, I'll post them somewhere :) -- Pierluigi Miranda
Re: [e-smith-devinfo] SquidGuard
Darrell May <[EMAIL PROTECTED]> wrote: >I have a potential client, a Christian School, looking at e-smith. >One of their requirements is blocking access to inappropriate >content/web sites. Is anyone using SquidGuard with e-smith or >is there an e-smith-squidguard rpm and HowTo somewhere? I'm using transproxy/squidGuard on my 4.0.1 gateway. It works well, and constitutes a good deterrent measure. To what you have already been told, let me add that if the configuration requires the definition of other networks as local, squidGuard will not work. The squidGuard.conf template does not looks for additional local networks during the configuration file creation. I've modified the template fragment to overcome this behaviour and sent it to Matthijs already. If you decide to deploy such a control and you have more than a local networks, let me know... -- Pierluigi Miranda
Re: [e-smith-devinfo] SquidGuard
On Wed, 21 Mar 2001, Gordon Rowell wrote: > On Tue, Mar 20, 2001 at 11:37:44PM -0500, Charlie Brady <[EMAIL PROTECTED]> wrote: > > > > On Tue, 20 Mar 2001, Darrell May wrote: > > > > > I have a potential client, a Christian School, looking at e-smith. > > > One of their requirements is blocking access to inappropriate > > > content/web sites. > > Darrell, don't forget you will also want e-smith-transproxy to redirect > web requests via squid. I'm not sure if this has been tested on 4.1 I'm using it now. But that's a new version 0.3-1 which I haven't uploaded to contrib yet. I'll add that to the TODO list. Charlie Brady [EMAIL PROTECTED] http://www.e-smith.org (development) http://www.e-smith.com (corporate) Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada
Re: [e-smith-devinfo] SquidGuard
On Tue, 20 Mar 2001, Darrell May wrote: > I have a potential client, a Christian School, looking at e-smith. > One of their requirements is blocking access to inappropriate > content/web sites. There is no way to block access to inappropriate content/web sites. There are ways to block access to _some_ such content, but that's about it. > Is anyone using SquidGuard with e-smith or > is there an e-smith-squidguard rpm and HowTo somewhere? There were some e-smith-squidGuard RPMs, I think on Matthis's www.bibber.net site. However, Matthis recently announced that he could no longer maintain his e-smith content there, and the site seems to be unavailable just now. I've copied his squidGuard SRPMS into my contrib directory on ftp.e-smith.org. They'll show up there overnight. Charlie Brady [EMAIL PROTECTED] http://www.e-smith.org (development) http://www.e-smith.com (corporate) Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada
RE: [e-smith-devinfo] SquidGuard
Gordon Rowell wrote: > Seriously, the only way to attempt content blocking is to > have a "White" > list of allowable sites. Which makes the web somewhat useless. > Someone needs to maintain this list and add "appropriate" sites. > > "Black" lists are easily circumvented - many, many content filters > don't stop you going to the IP address of the site :-) And as soon > as you allow access to search engines, all bets are off. > > But, anyway, I'm sure this isn't news to anyone... > > Gordon Thanks Gordon/Charlie. I'd reported to the client roughly the same response, that there really is no foolproof way to do what they want and a good computer usage policy statement may better serve the purpose. Thanks for the feedback :-) Regards, Darrell
RE: [e-smith-devinfo] SquidGuard
Pierluigi Miranda wrote: > Yessir! :) > > An additional note: if you want, you can precompile the > databases for faster > loading during startup (the blacklists file from squidGuard > site contains > precompiled databases, Matthijs files did not, at least until > the last time > I downloaded them). Thanks again Pierluigi. I'll perform the install this weekend and let you know the results. Darrell
Re: [e-smith-devinfo] SquidGuard
On Fri, 23 Mar 2001, Tim Litwiller wrote: > so is the e-smith-transproxy-0.2-3.noarch.rpm ok to use with 4.1.1 ? No, you'll need e-smith-transproxy-0.3-1.noarch.rpm. It should be up in my contrib directory, but isn't. It should be later today. Charlie Brady [EMAIL PROTECTED] http://www.e-smith.org (development) http://www.e-smith.com (corporate) Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 e-smith, inc. 1500-150 Metcalfe St, Ottawa, ON K2P 1P1 Canada
Re: [e-smith-devinfo] SquidGuard
On Thu, 22 Mar 2001 13:34:11 +0100, "Pierluigi Miranda" <[EMAIL PROTECTED]> wrote: > >-Original Message- >Darrell May <[EMAIL PROTECTED]> wrote: > > >>Thank you very much :-) That was excellent information! >>Also, there is mention that transproxy is needed. Do you know >>where I would find or how I would implement this or is e-smith >>transproxy enabled already? > > >E-Smith is not transproxy enabled, as far as I now. Transproxy is an >additional module someone (Charlie Brady? Are you the author, aren't you?) >wrote to redirect all web requests through Squid transparently, without the >need to configure every browser on every client machine. Which is a very common ISP requirement as well. (I use it on my home server because I don't want to have to reconfig the proxy settings in laptop when I get home from work.) The transproxy module worked very nicely for me in E-Smith 3.*mumble*, but broke for me when I tried to use it on 4.0. Admittedly, I haven't looked for an updated version recently. (Mind you, if I wasn't being lazy, I could probably do the same config by hand.) >It's needed to be certain (well, more certain than not) that the clients use >the squid proxy, that in turn is filtered by squidGuard... > >If I understand well, Transproxy consists in an additional config fragment >for ipchains. Yes, it puts a port-redirect into the ipchains ruleset, and also modifies squid's config file, so that squid knows what to do with the redirected queries. -- W . | ,. w , "Some people are alive only because \|/ \|/ it is illegal to kill them."Perna condita delenda est ---^^---
RE: [e-smith-devinfo] SquidGuard
Hi Filippo, SquidGuard is stable for 4.1.2, however, it is not ready for SME5. I really don't have much time for upgrading it to SME5 in the near future, but I would be happy to answer any questions if someone else wants to do it. Trevor. > -Original Message- > From: Filippo Carletti [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, November 20, 2001 10:03 AM > To: [EMAIL PROTECTED] > Subject: [e-smith-devinfo] SquidGuard > > > Is squidguard-21.tar.gz from Trevor Ouellette considered stable or is it > beta and needs some more efforts to be usable ? > What areas need to be addressed / improved ? > Trevor, are you still following the list ? > > Ciao, > Filippo > > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and > http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard
> SquidGuard is stable for 4.1.2, however, it is not ready for SME5. I really > don't have much time for upgrading it to SME5 in the near future, but I > would be happy to answer any questions if someone else wants to do it. I would like to spend some time on "porting" to SME5. I have squidguard-21.tar.gz, is it the latest ? While I'm there, would you (or any other user) like to see something changed / improved ? Ciao, Filippo -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] squidGuard HowTo
A quick question: How many urls, sites etc on in the databases & how often are they updated? New porn, warez, etc sites come out daily - so the database needs to be updated regularly! Regards Brandon Friedman Tech-Knowledgy Advantage (Tel.) +27 11 486-0626 (Cell.) 0834087840 (Fax.) +27 11 486-0629 (E-mail) [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa > For those interested, I've just completed a HowTo for > installing squidGuard. Visit here for details. > > http://netsourced.com/e-smith/howto-squidguard.html > > Install was very easy and seems to work without requiring > anything more then loading rpms and rebooting :-) I've > zipped all the rpms required and they are ready for > download (1.75MB) via the link above. > > Comments are welcomed. > > Regards, > > Darrell May > DMC NETSOURCED.COM > 9912 Lougheed Highway, Burnaby, BC, Canada V3J 1N3 > Phone: (604) 420-1362 * Fax: (604) 552-8833 > E-mail: [EMAIL PROTECTED] > Website: http://netsourced.com > > -- > This list is archived > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
RE: [e-smith-devinfo] squidGuard HowTo
Brandon Friedman wrote: > A quick question: > > How many urls, sites etc on in the databases & how often are > they updated? > New porn, warez, etc sites come out daily - so the database > needs to be > updated regularly! > Visit www.squidguard.org for more info. Regards, Darrell
Re: [e-smith-devinfo] squidguard returns
Trevor Ouellette <[EMAIL PROTECTED]> said: > Any ideas? Any perl wizards out there? Sounds like you've done quite a lot. I'm not a perl wizard at all but I'll offer to take a look. Forward me your scripts and any docs and I'll try to follow along and assist. My simple first thought for testing would be to create a webpage, place it in the ibay to capture the user input to a /tmp/squidgaurd-update file. Then have your scripts read in the file and process the variables. If this works then incorporate everything into the e-smith-manager by borrowing and editing some existing scripts. -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] squidguard returns
make another perl file called loader ( for this example ) that takes the script name the domain and the switch as variables and then check that script name is valid before running the domain and the switch thru it. this will keep users from being able to attempt to run other executables. in this loader you can also put html return calls to indicate success or failure and then call back to the original form. or generate an entire page in the loader with the success or failure notice and a link to add another. Choose list to modify trusted-d trusted-e trusted-u untrusted-d untrusted-e untrusted-u enter domain click to unblock domain Trevor Ouellette wrote: > > I've done a lot of work today on squidguard... but I still need to implement > it into the manager. > > It automatically downloads the latest public blacklists and installs them > weekly. > > I've written 6 scripts: trusted-d, trusted-e, trusted-u, untrusted-d, > untrusted-e, and untrusted-u for updating the user-database in squidguard. > It works perfectly. > > The scripts work like this: > > If I'm adding a pornographic domain (xxx.com) to my database, I simply > enter: > > # ./untrusted-d xxx.com > > And it's added. I can remove them as well: > > # ./untrusted-d xxx.com r > > It's very simple. I would like to display forms on a webpage (ibay) that > the administrator can enter the "xxx.com" in the box and hit submit. Then > PHP or perl passes those arguments "$1" and "$2" to my 6 scripts. > > Any ideas? Any perl wizards out there? I can give you full details and a > copy of the scripts if you are not sure. > > Trev. > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard returns
Hi Darrell, Don't worry about implementing your ibay webpage into the manager. I can do that part. In fact I can create the ibay and implement it into the manager with a script that I built. I am having a heck of a time with passing variables to my scripts from a webpage. Thanks... and I will be sending the scripts to you shortly! Trev. -Original Message- From: Darrell May [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 26, 2001 11:09 PM To: Trevor Ouellette; e-smith-devinfo Subject: Re: [e-smith-devinfo] squidguard returns Trevor Ouellette <[EMAIL PROTECTED]> said: > Any ideas? Any perl wizards out there? Sounds like you've done quite a lot. I'm not a perl wizard at all but I'll offer to take a look. Forward me your scripts and any docs and I'll try to follow along and assist. My simple first thought for testing would be to create a webpage, place it in the ibay to capture the user input to a /tmp/squidgaurd-update file. Then have your scripts read in the file and process the variables. If this works then incorporate everything into the e-smith-manager by borrowing and editing some existing scripts. -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard returns
Thanks Tim. That looks great! I like the idea of a loader script. -Original Message- From: Tim Litwiller [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 26, 2001 11:59 PM To: e-smith-devinfo Subject: Re: [e-smith-devinfo] squidguard returns make another perl file called loader ( for this example ) that takes the script name the domain and the switch as variables and then check that script name is valid before running the domain and the switch thru it. this will keep users from being able to attempt to run other executables. in this loader you can also put html return calls to indicate success or failure and then call back to the original form. or generate an entire page in the loader with the success or failure notice and a link to add another. Choose list to modify trusted-d trusted-e trusted-u untrusted-d untrusted-e untrusted-u enter domain click to unblock domain Trevor Ouellette wrote: > > I've done a lot of work today on squidguard... but I still need to implement > it into the manager. > > It automatically downloads the latest public blacklists and installs them > weekly. > > I've written 6 scripts: trusted-d, trusted-e, trusted-u, untrusted-d, > untrusted-e, and untrusted-u for updating the user-database in squidguard. > It works perfectly. > > The scripts work like this: > > If I'm adding a pornographic domain (xxx.com) to my database, I simply > enter: > > # ./untrusted-d xxx.com > > And it's added. I can remove them as well: > > # ./untrusted-d xxx.com r > > It's very simple. I would like to display forms on a webpage (ibay) that > the administrator can enter the "xxx.com" in the box and hit submit. Then > PHP or perl passes those arguments "$1" and "$2" to my 6 scripts. > > Any ideas? Any perl wizards out there? I can give you full details and a > copy of the scripts if you are not sure. > > Trev. > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] squidguard returns
Hi Guys, FYI! We have a spare/test server with its own Ip address. If you need to test any ideas on 4.1.x E-smith manager, we can assist. Just say the word. This would avoid anyone trying new config's on their production server. Its your call! Orville - NYC - Original Message - From: "Trevor Ouellette" <[EMAIL PROTECTED]> To: "e-smith-devinfo" <[EMAIL PROTECTED]> Sent: Friday, July 27, 2001 11:03 AM Subject: RE: [e-smith-devinfo] squidguard returns > Thanks Tim. That looks great! I like the idea of a loader script. > > -Original Message- > From: Tim Litwiller [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 26, 2001 11:59 PM > To: e-smith-devinfo > Subject: Re: [e-smith-devinfo] squidguard returns > > > make another perl file called loader ( for this example ) that > takes > the script name the domain and the switch as variables and then > check that script name is valid before running the domain and the > switch > thru it. > > this will keep users from being able to attempt to run other > executables. > > in this loader you can also put html return calls to indicate > success or failure > and then call back to the original form. > > or generate an entire page in the loader with the success or > failure notice and > a link to add another. > > action="/cgi-bin/loader?script=$script&domain=&formelement1&switch=$switch"> > > > Choose list to modify > > > > >trusted-d > > > trusted-e > > >trusted-u > > > > value="untrusted-d"> > untrusted-d > > value="untrusted-e"> > untrusted-e > > >untrusted-u > > > > > > enter domain > > maxlength="55"> > > > > click to unblock domain > > > > > > > > > > > > > > > > > > Trevor Ouellette wrote: > > > > I've done a lot of work today on squidguard... but I still need to > implement > > it into the manager. > > > > It automatically downloads the latest public blacklists and installs them > > weekly. > > > > I've written 6 scripts: trusted-d, trusted-e, trusted-u, untrusted-d, > > untrusted-e, and untrusted-u for updating the user-database in squidguard. > > It works perfectly. > > > > The scripts work like this: > > > > If I'm adding a pornographic domain (xxx.com) to my database, I simply > > enter: > > > > # ./untrusted-d xxx.com > > > > And it's added. I can remove them as well: > > > > # ./untrusted-d xxx.com r > > > > It's very simple. I would like to display forms on a webpage (ibay) that > > the administrator can enter the "xxx.com" in the box and hit submit. Then > > PHP or perl passes those arguments "$1" and "$2" to my 6 scripts. > > > > Any ideas? Any perl wizards out there? I can give you full details and a > > copy of the scripts if you are not sure. > > > > Trev. > > > > -- > > Please report bugs to [EMAIL PROTECTED] > > Please mail [EMAIL PROTECTED] (only) to discuss security issues > > Support for registered customers and partners to [EMAIL PROTECTED] > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > Archives by mail and > http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard returns
Thanks Orville, I've got a few production machines here. But thanks for the offer! Trev. -Original Message- From: Orville Carter [mailto:[EMAIL PROTECTED]] Sent: Friday, July 27, 2001 9:17 AM To: Trevor Ouellette; e-smith-devinfo Subject: Re: [e-smith-devinfo] squidguard returns Hi Guys, FYI! We have a spare/test server with its own Ip address. If you need to test any ideas on 4.1.x E-smith manager, we can assist. Just say the word. This would avoid anyone trying new config's on their production server. Its your call! Orville - NYC - Original Message - From: "Trevor Ouellette" <[EMAIL PROTECTED]> To: "e-smith-devinfo" <[EMAIL PROTECTED]> Sent: Friday, July 27, 2001 11:03 AM Subject: RE: [e-smith-devinfo] squidguard returns > Thanks Tim. That looks great! I like the idea of a loader script. > > -Original Message- > From: Tim Litwiller [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 26, 2001 11:59 PM > To: e-smith-devinfo > Subject: Re: [e-smith-devinfo] squidguard returns > > > make another perl file called loader ( for this example ) that > takes > the script name the domain and the switch as variables and then > check that script name is valid before running the domain and the > switch > thru it. > > this will keep users from being able to attempt to run other > executables. > > in this loader you can also put html return calls to indicate > success or failure > and then call back to the original form. > > or generate an entire page in the loader with the success or > failure notice and > a link to add another. > > action="/cgi-bin/loader?script=$script&domain=&formelement1&switch=$switch"> > > > Choose list to modify > > > > >trusted-d > > > trusted-e > > >trusted-u > > > > value="untrusted-d"> > untrusted-d > > value="untrusted-e"> > untrusted-e > > >untrusted-u > > > > > > enter domain > > maxlength="55"> > > > > click to unblock domain > > > > > > > > > > > > > > > > > > Trevor Ouellette wrote: > > > > I've done a lot of work today on squidguard... but I still need to > implement > > it into the manager. > > > > It automatically downloads the latest public blacklists and installs them > > weekly. > > > > I've written 6 scripts: trusted-d, trusted-e, trusted-u, untrusted-d, > > untrusted-e, and untrusted-u for updating the user-database in squidguard. > > It works perfectly. > > > > The scripts work like this: > > > > If I'm adding a pornographic domain (xxx.com) to my database, I simply > > enter: > > > > # ./untrusted-d xxx.com > > > > And it's added. I can remove them as well: > > > > # ./untrusted-d xxx.com r > > > > It's very simple. I would like to display forms on a webpage (ibay) that > > the administrator can enter the "xxx.com" in the box and hit submit. Then > > PHP or perl passes those arguments "$1" and "$2" to my 6 scripts. > > > > Any ideas? Any perl wizards out there? I can give you full details and a > > copy of the scripts if you are not sure. > > > > Trev. > > > > -- > > Please report bugs to [EMAIL PROTECTED] > > Please mail [EMAIL PROTECTED] (only) to discuss security issues > > Support for registered customers and partners to [EMAIL PROTECTED] > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > Archives by mail and > http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard returns
Hi tim, I'm having some trouble with the loaderscript and the html form. The form doesn't seem to pass the correct information on to the loader.cgi script. action="/cgi-bin/loader?script=$script&domain=&formelement1&switch=$switch"> Any ideas? -Original Message- From: Tim Litwiller [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 26, 2001 11:59 PM To: e-smith-devinfo Subject: Re: [e-smith-devinfo] squidguard returns make another perl file called loader ( for this example ) that takes the script name the domain and the switch as variables and then check that script name is valid before running the domain and the switch thru it. this will keep users from being able to attempt to run other executables. in this loader you can also put html return calls to indicate success or failure and then call back to the original form. or generate an entire page in the loader with the success or failure notice and a link to add another. Choose list to modify trusted-d trusted-e trusted-u untrusted-d untrusted-e untrusted-u enter domain click to unblock domain Trevor Ouellette wrote: > > I've done a lot of work today on squidguard... but I still need to implement > it into the manager. > > It automatically downloads the latest public blacklists and installs them > weekly. > > I've written 6 scripts: trusted-d, trusted-e, trusted-u, untrusted-d, > untrusted-e, and untrusted-u for updating the user-database in squidguard. > It works perfectly. > > The scripts work like this: > > If I'm adding a pornographic domain (xxx.com) to my database, I simply > enter: > > # ./untrusted-d xxx.com > > And it's added. I can remove them as well: > > # ./untrusted-d xxx.com r > > It's very simple. I would like to display forms on a webpage (ibay) that > the administrator can enter the "xxx.com" in the box and hit submit. Then > PHP or perl passes those arguments "$1" and "$2" to my 6 scripts. > > Any ideas? Any perl wizards out there? I can give you full details and a > copy of the scripts if you are not sure. > > Trev. > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] Squidguard GUI
- Original Message - From: "Brandon Friedman" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, August 21, 2001 2:40 PM Subject: [e-smith-devinfo] Squidguard GUI > > Although I think squidguard is a cool add-on to e-smith... I think from an > administrative point of view it does require a 'GUI'. We install squidguard > into a lot of schools - the teachers aren't really techies but they need to > be able to monitor/update etc the squidguard settings > > I had a look on the web and all I could find was this add-on to webmin... > > http://www.niemueller.de/webmin/modules/squidguard/ > > Has anybody found/developed etc a GUI for squidgaurd? > I was also looking for a GUI for squidguard, but all I found was the webmin add-on you talked about. As it is stongly adviced not to use webmin on an e-smith box... I didn't install it... The e-smith-manager-panel for squid guard is cool (realy great), but it lacks some feature (like enabling db entries individualy (e.g. just filtering porn, etc..). Something like the webmin addon but for e-smith would be great !!! If anybody knows something like this I'm also interested ! Regards, Matthieu -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] Squidguard GUI
i think that goes for a lot more things in e-smith , i find the management console is really kind of limmiting -Original Message- From: Brandon Friedman [mailto:[EMAIL PROTECTED]] Sent: dinsdag 21 augustus 2001 14:40 To: [EMAIL PROTECTED] Subject: [e-smith-devinfo] Squidguard GUI Although I think squidguard is a cool add-on to e-smith... I think from an administrative point of view it does require a 'GUI'. We install squidguard into a lot of schools - the teachers aren't really techies but they need to be able to monitor/update etc the squidguard settings I had a look on the web and all I could find was this add-on to webmin... http://www.niemueller.de/webmin/modules/squidguard/ Has anybody found/developed etc a GUI for squidgaurd? -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] Squidguard GUI
Where is this e-smith manager for squidguard Is it on the contrib list? Matthieu Perreira Da Silva <[EMAIL PROTECTED]> said: > - Original Message - > From: "Brandon Friedman" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, August 21, 2001 2:40 PM > Subject: [e-smith-devinfo] Squidguard GUI > > > > > > Although I think squidguard is a cool add-on to e-smith... I think from an > > administrative point of view it does require a 'GUI'. We install > squidguard > > into a lot of schools - the teachers aren't really techies but they need > to > > be able to monitor/update etc the squidguard settings > > > > I had a look on the web and all I could find was this add-on to webmin... > > > > http://www.niemueller.de/webmin/modules/squidguard/ > > > > Has anybody found/developed etc a GUI for squidgaurd? > > > I was also looking for a GUI for squidguard, but all I found was the webmin > add-on you talked about. > As it is stongly adviced not to use webmin on an e-smith box... I didn't > install it... > The e-smith-manager-panel for squid guard is cool (realy great), but it > lacks some feature (like enabling db entries individualy (e.g. just > filtering porn, etc..). Something like the webmin addon but for e-smith > would be great !!! > If anybody knows something like this I'm also interested ! > > Regards, > > Matthieu > > -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] Squidguard GUI
- Original Message - From: "Brandon Friedman" <[EMAIL PROTECTED]> To: "Matthieu Perreira Da Silva" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Tuesday, August 21, 2001 2:54 PM Subject: Re: [e-smith-devinfo] Squidguard GUI > > Where is this e-smith manager for squidguard > > Is it on the contrib list? > It is in the squidguard for ESSG package : http://www.greencomputer.com/gc-guard-1.tar Here is a copy of the message form Trevor Ouellette (I think... :-) ) >Log in as root to your ESSG server. > >mkdir /squidguard >cd /squidguard >wget -nv http://www.greencomputer.com/gc-guard-1.tar >tar -xf gc-guard-1.tar >./create-squidguard > >That's it! The settings can be found under Security, Content Filtering. >There is link to a help at the bottom of that page. > >It updates it's blacklist once a week, administrators can update/remove >domains, expressions and URL's from a GUI in the manager, admins can also >allow specific IP's to have Full access to the Internet instead of the >default filtered access. > >Give it a go... > >Thanks to Darrell May, JL (for the sudo stuff), and of course Lorenzo! I >hope I didn't forget anybody! -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] Squidguard GUI
Sorry... silly question... But does squidguard need to be installed on e-smith first, and then install this package? Matthieu Perreira Da Silva <[EMAIL PROTECTED]> said: > - Original Message - > From: "Brandon Friedman" <[EMAIL PROTECTED]> > To: "Matthieu Perreira Da Silva" <[EMAIL PROTECTED]>; > <[EMAIL PROTECTED]> > Sent: Tuesday, August 21, 2001 2:54 PM > Subject: Re: [e-smith-devinfo] Squidguard GUI > > > > > > Where is this e-smith manager for squidguard > > > > Is it on the contrib list? > > > > It is in the squidguard for ESSG package : > http://www.greencomputer.com/gc-guard-1.tar > > Here is a copy of the message form Trevor Ouellette (I think... :-) ) > > >Log in as root to your ESSG server. > > > >mkdir /squidguard > >cd /squidguard > >wget -nv http://www.greencomputer.com/gc-guard-1.tar > >tar -xf gc-guard-1.tar > >./create-squidguard > > > >That's it! The settings can be found under Security, Content Filtering. > >There is link to a help at the bottom of that page. > > > >It updates it's blacklist once a week, administrators can update/remove > >domains, expressions and URL's from a GUI in the manager, admins can also > >allow specific IP's to have Full access to the Internet instead of the > >default filtered access. > > > >Give it a go... > > > >Thanks to Darrell May, JL (for the sudo stuff), and of course Lorenzo! I > >hope I didn't forget anybody! > > > -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] Squidguard GUI
This package includes everything you need... One cool feature of this package is that it updates squidguard's database automaticaly eveyday! Good install - Original Message - From: "Brandon Friedman" <[EMAIL PROTECTED]> To: "Matthieu Perreira Da Silva" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Tuesday, August 21, 2001 3:05 PM Subject: Re: [e-smith-devinfo] Squidguard GUI > > Sorry... silly question... > > But does squidguard need to be installed on e-smith first, and then install > this package? -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2
Hi Jeff, To be honest with you, if you just want to uninstall squidguard 1 so that you can use squidguard 2, you don't have to... just run the script and it will update the system to ver 2. If you want to get rid of it perm... that's on my agenda... but simply removing the ibay, uninstalling the transproxy rpm SHOULD do it. Don't worry, I'm working on an uninstall proggy this week. Trev. -Original Message- From: Jeff [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 22, 2001 2:19 PM To: Trevor Ouellette Subject: RE: [e-smith-devinfo] SquidGuard 2 How does one remove squidgard 1 (from your earlier example) -Original Message- From: Trevor Ouellette [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 22, 2001 2:05 PM To: e-smith-devinfo Subject: [e-smith-devinfo] SquidGuard 2 I'm trying to fix all the problems that were plauging the squidguard interface. If anyone cares, here's how to download/install it. I've had a lot of inexperienced people asking about content filtering, so I want to make this easy for them. I know it's unconventional (PHP & scripts), please bear with me. - Log in as ROOT/PASSWORD - mkdir /squidguard2 - cd /squidguard2 - wget -nv http://www.greencomputer.com/squidguard-2.tar - tar -xf squidguard-2.tar - ./create-squidguard Rebooting is optional FIXES: Downloads the latest blacklist (Pal from squidguard removed all the bogus entries like Netscape and AOL from the blacklist). The blacklist is now called blacklist.tar.gz~ There is a workaround for when you go through the admin console and squidguard stops updating --> log in as root and enter "/usr/local/squidGuard/setacls". Remember to password protect your ibay. This protects your internal network. If anyone knows how to do this from the commandline (shell please), let me know and I can implement it. Or do it yourself and send me a copy. (it's in the create-squidguard script). -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2
Hi Brandon, You do not have to uninstall the 1st version. 1. Simple follow the instructions for installing version 2. 2. You can now delete the /squidguard and /squidguard2 installation directories. That's it! If you have any other questions or concerns, please let me know and I will do my best to help you through it. Trev. -Original Message- From: Brandon Friedman [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 5:39 AM To: Trevor Ouellette Subject: Re: [e-smith-devinfo] SquidGuard 2 Hi Trevor I have the first release installed. Must I uninstall first?? if so how? Trevor Ouellette <[EMAIL PROTECTED]> said: > I'm trying to fix all the problems that were plauging the squidguard > interface. If anyone cares, here's how to download/install it. I've had a > lot of inexperienced people asking about content filtering, so I want to > make this easy for them. I know it's unconventional (PHP & scripts), please > bear with me. > > - Log in as ROOT/PASSWORD > > - mkdir /squidguard2 > > - cd /squidguard2 > > - wget -nv http://www.greencomputer.com/squidguard-2.tar > > - tar -xf squidguard-2.tar > > - ./create-squidguard > > Rebooting is optional > > > FIXES: > > Downloads the latest blacklist (Pal from squidguard removed all the bogus > entries like Netscape and AOL from the blacklist). The blacklist is now > called blacklist.tar.gz~ > > There is a workaround for when you go through the admin console and > squidguard stops updating --> log in as root and enter > "/usr/local/squidGuard/setacls". > > Remember to password protect your ibay. This protects your internal > network. If anyone knows how to do this from the commandline (shell > please), let me know and I can implement it. Or do it yourself and send me > a copy. (it's in the create-squidguard script). > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard 2 Development
Trev, i dunno about the first one, but... - Original Message - From: "Trevor Ouellette" <[EMAIL PROTECTED]> To: "E-Smith Developers Info Mailing List" <[EMAIL PROTECTED]> Sent: Thursday, August 23, 2001 12:01 PM Subject: [e-smith-devinfo] SquidGuard 2 Development > 2. I need to know how to set a password on an ibay from the commandline. I > am going to put it in my shell script --> you will have to log in with an > account and password for additional security. ## to set the password # perl -e 'use esmith::util;' -e 'esmith::util::setIbayPassword ('', '');' ##to show that its been set # /sbin/e-smith/db accounts setprop PasswordSet yes Regards, -Keith -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Hi Keith! I haven't heard from you in a while. I appreciate the code... :-) In fact, the code below is what you sent me last time. Here is my script so far. Currently the ibay doesn't prompt the user for a password when accessed directly at http://192.168.1.1/squidguard /sbin/e-smith/db accounts set squidguard ibay Group admin UserAccess wr-admin-rd-group PublicAccess local CgiBin enabled PasswordSet no Name squidguard Gid 5101 Uid 5101 # create the account on the system /sbin/e-smith/signal-event ibay-create squidguard # hack to use the setibay function from command line perl -e 'use esmith::util;' -e 'esmith::util::setIbayPassword("squidguard","pass");' # Notify manager that password is set /sbin/e-smith/db accounts setprop squidguard PasswordSet yes -Original Message- From: Keith Woody [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 1:35 PM To: Trevor Ouellette Cc: [EMAIL PROTECTED] Subject: Re: [e-smith-devinfo] SquidGuard 2 Development Trev, i dunno about the first one, but... - Original Message - From: "Trevor Ouellette" <[EMAIL PROTECTED]> To: "E-Smith Developers Info Mailing List" <[EMAIL PROTECTED]> Sent: Thursday, August 23, 2001 12:01 PM Subject: [e-smith-devinfo] SquidGuard 2 Development > 2. I need to know how to set a password on an ibay from the commandline. I > am going to put it in my shell script --> you will have to log in with an > account and password for additional security. ## to set the password # perl -e 'use esmith::util;' -e 'esmith::util::setIbayPassword ('', '');' ##to show that its been set # /sbin/e-smith/db accounts setprop PasswordSet yes Regards, -Keith -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard 2 Development
- Original Message - From: "Trevor Ouellette" <[EMAIL PROTECTED]> To: "Keith Woody" <[EMAIL PROTECTED]> Cc: "E-Smith Developers Info Mailing List" <[EMAIL PROTECTED]> Sent: Thursday, August 23, 2001 12:32 PM Subject: RE: [e-smith-devinfo] SquidGuard 2 Development > Here is my script so far. Currently the ibay doesn't prompt the user for a > password when accessed directly at http://192.168.1.1/squidguard ::ahem:: 192.168.1.1 is local oui? ::wink wink:: ::nudge nudge:: =] -Keith -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard 2 Development
Trevor Ouellette <[EMAIL PROTECTED]> said: > If there is any security issues, please bring them to my attention. > > 1. When you go through the admin console squidguard stops working. > What part stops working? Anyhow, probably due to the fact the admin console runs as user admin and your PHP page would be set www. > 2. I need to know how to set a password on an ibay from the > commandline. I see you got the answer for this already, however, I would recommend you not use an ibay to host your application. I agree e-smith makes it easier for websites to be run from ibays but it has been posted before that ibays really are intended for file sharing and simple web sites only. Not for hosting applications where advanced httpd.conf configuration is needed. (Just to counterdict myself, Dan Brown has a HowTo for adding some advanced ibay properties but limited to one line entry I believe) But in any event, to really have the freedom to go beyond the current ibay or advanced ibay settings, it may be better to host your squidguard implementation from an alias directory. This would also make it simpler to build the final product into an rpm. Just my thoughts, -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Hi Darrell, All programs APPEAR to operate properly (checking the logs). In fact, squid's transproxy and squidguard both continue to load and work properly. It's something in the setacls file in /usr/local/squidGuard. Maybe permissions... that sounds right. Do you have any more information about using an alias directory instead of an ibay. That sounds pretty good. That way, internal clients won't see the /squidguard directory in Samba. In fact, I don't even want anyone to see the ibay in Samba. Good thinking... I'll keep looking around! Trev. -Original Message- From: Darrell May [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 1:57 PM To: Trevor Ouellette; E-Smith Developers Info Mailing List Subject: Re: [e-smith-devinfo] SquidGuard 2 Development What part stops working? Anyhow, probably due to the fact the admin console runs as user admin and your PHP page would be set www. > 2. I need to know how to set a password on an ibay from the > commandline. I see you got the answer for this already, however, I would recommend you not use an ibay to host your application. I agree e-smith makes it easier for websites to be run from ibays but it has been posted before that ibays really are intended for file sharing and simple web sites only. Not for hosting applications where advanced httpd.conf configuration is needed. (Just to counterdict myself, Dan Brown has a HowTo for adding some advanced ibay properties but limited to one line entry I believe) But in any event, to really have the freedom to go beyond the current ibay or advanced ibay settings, it may be better to host your squidguard implementation from an alias directory. This would also make it simpler to build the final product into an rpm. Just my thoughts, -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
I had posted a "wish list" entry about just that sort of thing. I would like to see the number of announced browsable share reduced to the minimum via SAMBA, and Appletalk. Allen -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Allen Rapini <[EMAIL PROTECTED]> said: > I had posted a "wish list" entry about just that sort of thing. I would like > to see the number of announced browsable share reduced to the minimum via > SAMBA, and Appletalk. > > Allen It is actually just a matter of editing /etc/samba.conf and setting 'browseable = no', via the e-smith way of course by diving into the templates and creating/editing a templates-custom fragment. -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
But you can still reach it by doing a \\servername\ibay right? It just becomes like the netlogon directory. Plus, netatalk is still running. Trev. -Original Message- From: Darrell May [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 2:28 PM To: Allen Rapini; E-Smith Developers Info Mailing List Subject: RE: [e-smith-devinfo] SquidGuard 2 Development It is actually just a matter of editing /etc/samba.conf and setting 'browseable = no', via the e-smith way of course by diving into the templates and creating/editing a templates-custom fragment. -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Trevor Ouellette <[EMAIL PROTECTED]> said: > But you can still reach it by doing a \\servername\ibay right? It just > becomes like the netlogon directory. Plus, netatalk is still running. Correct. Again, if these ibays in question are not used for file sharing, then again it is better not to use ibays. Use a directory alias in httpd.conf. -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Darrell, have you used directory alias's yourself? Is it as simple at inserting a few templates into the httpd.conf directory (custom-templates of course)? Trev. -Original Message- From: Darrell May [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 2:39 PM To: Trevor Ouellette; [EMAIL PROTECTED]; Allen Rapini; E-Smith Developers Info Mailing List Subject: RE: [e-smith-devinfo] SquidGuard 2 Development Trevor Ouellette <[EMAIL PROTECTED]> said: > But you can still reach it by doing a \\servername\ibay right? It just > becomes like the netlogon directory. Plus, netatalk is still running. Correct. Again, if these ibays in question are not used for file sharing, then again it is better not to use ibays. Use a directory alias in httpd.conf. -- Darrell May DMC NETSOURCED.COM http://netsourced.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
On Thu, 23 Aug 2001, Trevor Ouellette wrote: > On Thu, 23 Aug 2001, Darrell May wrote: > > > I see you got the answer for this already, however, I would recommend you > > not use an ibay to host your application. I'd strongly second Darrell's recommendation. > Do you have any more information about using an alias directory instead of > an ibay. That sounds pretty good. That way, internal clients won't see the > /squidguard directory in Samba. I'd suggest that you start by looking at the way that the e-smith-imp RPM integrates /webmail into the website without using an i-bay. You'll find detailed instructions on making and modifying e-smith RPMs on the e-smith.org web site. -- Charlie Brady [EMAIL PROTECTED] Lead Product Developer Network Server Solutions Grouphttp://www.e-smith.com/ Mitel Networks Corporationhttp://www.mitel.com/ Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard 2 Development
Thanks Charlie, That's right, imp and webmail is a good example. I will start work on using the alias directory. Trev. -Original Message- From: Charlie Brady [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 23, 2001 3:21 PM To: Trevor Ouellette Cc: E-Smith Developers Info Mailing List Subject: RE: [e-smith-devinfo] SquidGuard 2 Development I'd suggest that you start by looking at the way that the e-smith-imp RPM integrates /webmail into the website without using an i-bay. You'll find detailed instructions on making and modifying e-smith RPMs on the e-smith.org web site. -- Charlie Brady [EMAIL PROTECTED] Lead Product Developer Network Server Solutions Grouphttp://www.e-smith.com/ Mitel Networks Corporationhttp://www.mitel.com/ Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard interface 99% complete.
I wrote my squidguard interface today... all in PHP! I can now update domains, expressions and URL's for trusted and untrusted files. Add, remove and list files are possible. It's a cheap little database based on the six squidguard text files. But, does anyone know how to execute a squid restart from a web interface? (not the /etc/rc.d/init.d/squid restart commands). Maybe an e-smith restart or something that doesn't have to be root to execute... I'm having permission problems with squid restarting, etc... There has to be something... Trev. -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] squidguard for essg reports
In message <[EMAIL PROTECTED]>, Trevor Ouellette <[EMAIL PROTECTED]> writes >All, > >Has anybody else installed/used the squidguard.tar that I put together? >Bertrand seems to be having problems with it after about a week? > >I'm suspecting the crons.weekly script isn't doing it's job properly... or >maybe the new blacklist.tar.gz file has changed enough that my download >script is having issues. > >Anyway... if anybody could report back to me that would be great. > >Trev. > > >-- >Please report bugs to [EMAIL PROTECTED] >Please mail [EMAIL PROTECTED] (only) to discuss security issues >Support for registered customers and partners to [EMAIL PROTECTED] >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] >Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > I have had your script running. I cant say that I have seen any problems will check when I am in the office -- © Timothy Pugh -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard for essg reports
I second that opinion, I am using it since last week on a essg 4.1.2 at home with no problems. It's not the most scientific testing, but the features definitely work as advertised. Allen -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard for essg reports
Thanks everyone, And my squidguard stuff is working on my test box too. I'll keep my eye on this. Trev. -Original Message- From: Timothy Pugh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 07, 2001 12:41 PM To: [EMAIL PROTECTED] Subject: Re: [e-smith-devinfo] squidguard for essg reports In message <[EMAIL PROTECTED]>, Trevor Ouellette <[EMAIL PROTECTED]> writes >All, > >Has anybody else installed/used the squidguard.tar that I put together? >Bertrand seems to be having problems with it after about a week? > >I'm suspecting the crons.weekly script isn't doing it's job properly... or >maybe the new blacklist.tar.gz file has changed enough that my download >script is having issues. > >Anyway... if anybody could report back to me that would be great. > >Trev. > > >-- >Please report bugs to [EMAIL PROTECTED] >Please mail [EMAIL PROTECTED] (only) to discuss security issues >Support for registered customers and partners to [EMAIL PROTECTED] >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] >Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > I have had your script running. I cant say that I have seen any problems will check when I am in the office -- © Timothy Pugh -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard for essg reports
There is an e-mail address at [EMAIL PROTECTED] You can try send them an email (nicely worded of course :-) and they will add it to the robot exemption list. You can add the incorrectly banned site to your trusted domains files in the squidguard manager interface. The sites added via the interface have more authority than the blacklist and will take precedent. Trev. -Original Message- From: David Brustad [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 08, 2001 1:44 PM To: Trevor Ouellette Subject: Re: [e-smith-devinfo] squidguard for essg reports Trevor, I installed your package and it is exactly what I needed. It seems a little strange though, because lately (4 or 5 days after installation) it filters lots of normal stuff from the normal users. I could not load www.aol.com for some reason. I added my IP to the unfiltered list and all was well, but that does not work for dhcp when I get a new ip. Any ideas? Thanks, David Brustad [EMAIL PROTECTED] -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard for essg reports
Is probably the squidguard blacklist file. Even "www.networksolutions.com" was blocked. I bet some joker added aol to the blacklist because they thought it might be funny. What a bunch of jerks! I found it in /db/porn/domains --> "aol.com" BTW, how often do you get a new internal IP address via DHCP? I've had the same one now for a couple months. Trev. -Original Message- From: David Brustad [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 08, 2001 1:44 PM To: Trevor Ouellette Subject: Re: [e-smith-devinfo] squidguard for essg reports Trevor, I installed your package and it is exactly what I needed. It seems a little strange though, because lately (4 or 5 days after installation) it filters lots of normal stuff from the normal users. I could not load www.aol.com for some reason. I added my IP to the unfiltered list and all was well, but that does not work for dhcp when I get a new ip. Any ideas? Thanks, David Brustad [EMAIL PROTECTED] -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] squidguard for essg reports
I've got the same result. I will post a fix after I get the new location from squidguard.org. Has anyone looked into a commercial solution (working it into es)? Trev. -Original Message- From: Johan Blignaut [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 14, 2001 5:43 AM To: Trevor Ouellette Subject: Re: [e-smith-devinfo] squidguard for essg reports Hello Trevor I installed squidguard. It could not find blacklists/* I reinstalled as you suggested to Bertrand, same result - no blacklist/* ftp to ftp.ost.eltele.no .. no blacklist/* I have only been going today - so I cannot comment on unblocked state. It works perfectly at this time. Thank you very much for a very necessary and very nice program. Johan Trevor Ouellette wrote: > All, > > Has anybody else installed/used the squidguard.tar that I put together? > Bertrand seems to be having problems with it after about a week? > > I'm suspecting the crons.weekly script isn't doing it's job properly... or > maybe the new blacklist.tar.gz file has changed enough that my download > script is having issues. > > Anyway... if anybody could report back to me that would be great. > > Trev. > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard interface 2nd release
Trevor Thanks again, for the squidGuard package. I honestly didn't have any problems I knew of with ver. 1, but I figured I could "guinea pig" my home system for you. Works great, as advertised, without a reboot... Allen -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard interface 2nd release
In message <[EMAIL PROTECTED]>, Allen Rapini <[EMAIL PROTECTED]> writes >Trevor >Thanks again, for the squidGuard package. I honestly didn't have any >problems I knew of with ver. 1, but I figured I could "guinea pig" my home >system for you. Works great, as advertised, without a reboot... > >Allen > > I my self wood agree not seen any problems it works a treat !!. -- Timothy Pugh -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard interface 2nd release
In message, Timothy Pugh <[EMAIL PROTECTED]> writes >In message <[EMAIL PROTECTED]>, >Allen Rapini <[EMAIL PROTECTED]> writes >>Trevor >>Thanks again, for the squidGuard package. I honestly didn't have any >>problems I knew of with ver. 1, but I figured I could "guinea pig" my home >>system for you. Works great, as advertised, without a reboot... >> >>Allen >> >> > >I my self wood agree not seen any problems it works a treat !!. > It's early in the morning and yes my brain (wood) or is it would not work !!. -- Timothy Pugh -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard interface 2nd release
Sorry guys, I must have missed the first e-mail where can we get the second release of this Squidguard GUI??? Timothy Pugh <[EMAIL PROTECTED]> said: > In message <[EMAIL PROTECTED]>, Allen > Rapini <[EMAIL PROTECTED]> writes > >Trevor > >Thanks again, for the squidGuard package. I honestly didn't have any > >problems I knew of with ver. 1, but I figured I could "guinea pig" my home > >system for you. Works great, as advertised, without a reboot... > > > >Allen > > > > > > I my self wood agree not seen any problems it works a treat !!. > > -- > Timothy Pugh > > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard interface 2nd release
Hi Trevor I have the first release installed. Must I uninstall the first release before I install this one??? if so how? Trevor Ouellette <[EMAIL PROTECTED]> said: > [This may be a double post -- I haven't received my first post yet] > > I'm trying to fix all the problems that were plaguing the SquidGuard > interface. If anyone cares, here's how to download/install it. I've had a > lot of inexperienced people asking about content filtering, so I want to > make this easy for them. I know it's unconventional (PHP & scripts), please > bear with me. > > - Log in as ROOT/PASSWORD > > - mkdir /squidguard2 > > - cd /squidguard2 > > - wget -nv http://www.greencomputer.com/squidguard-2.tar > > - tar -xf squidguard-2.tar > > - ./create-squidguard > > Rebooting is optional > > > FIXES: > > Downloads the latest blacklist (Pal from squidguard removed all the bogus > entries like Netscape and AOL from the blacklist). The blacklist is now > called blacklist.tar.gz~ > > There is a workaround for when you go through the admin console and > squidguard stops updating --> log in as root and enter > "/usr/local/squidGuard/setacls". > > Remember to password protect your ibay. This protects your internal > network. If anyone knows how to do this from the commandline (shell > please), let me know and I can implement it. Or do it yourself and send me > a copy. (it's in the create-squidguard script). > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Regards Brandon Friedman Product Manager Tech-Knowledgy Advantage Ph: +27 (011) 486-0626 Fax: +27 (011) 486-0629 Cell: +27 (083) 408-7840 E: [EMAIL PROTECTED] www.techknowledgy.co.za PO Box 1909, Houghton, 2041 South Africa No. 1 Mowbray Road, Greenside, Johannesburg, South Africa e-smith Authorised Partners -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] SquidGuard Interface Ver2.1 is Available
Trevor Ouellette <[EMAIL PROTECTED]> said: > Hi All, > > Version 2.1 of the SquidGuard Interface is complete and ready for > download. Hi Trevor. Not reporting any problem :) Just wondering if you have tried this on SME5 yet or just 4.1.2? Regards, -- Darrell May DMC NETSOURCED.COM http://netsourced.com http://myEZserver.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] SquidGuard Interface Ver2.1 is Available
Hi Darrell, Thanks for the feedback. I haven't had a chance to look at SME5 yet. :-) I will be doing testing on SME5 with SquidGuard next week. Trev. > -Original Message- > From: Darrell May [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, September 25, 2001 4:11 PM > To: Trevor Ouellette; E-Smith Developers Info Mailing List > Subject: Re: [e-smith-devinfo] SquidGuard Interface Ver2.1 is Available > > > > Trevor Ouellette <[EMAIL PROTECTED]> said: > > > Hi All, > > > > Version 2.1 of the SquidGuard Interface is complete and ready for > > download. > > Hi Trevor. Not reporting any problem :) Just wondering if you have > tried this on SME5 yet or just 4.1.2? > > Regards, > > -- > Darrell May > DMC NETSOURCED.COM > http://netsourced.com > http://myEZserver.com > > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
[e-smith-devinfo] e-smith manager "limitations" (was Re: [e-smith-devinfo] Squidguard GUI)
On Tue, Aug 21, 2001 at 02:53:56PM +0200, Jelmer Kuperus <[EMAIL PROTECTED]> wrote: > i think that goes for a lot more things in e-smith , i find the management > console is really kind of limmiting > [...] Limiting user visible options is a primary e-smith design goal. We don't expect users to manage Samba, FTP, Apache, etc. - they are done consistently by the manager. Most users (as opposed to "power users") want a limited set of choices so they know what should be entered at each screen. The server is designed for small businesses with no IT staff. They typically don't know, nor want to know, anything about Linux permissions, users, groups, etc. Most of the GUI admin tools expect you to know something about the underlying system. The manager is also designed to be extensible. It's an open framework so you can add as many complex panels as you wish. So, there's nothing to stop you adding a panel with hundreds of widgets on it if you want the "power options". So, if you find it limiting, why not write a panel to ease those limitations? We'll host the contributed packages on our site. Thanks, Gordon -- Gordon Rowell[EMAIL PROTECTED] VP Engineering Network Server Solutions Group http://www.e-smith.com Mitel Networks Corporation http://www.mitel.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] squidGuard localhost errors [was RE: [e-smith-devinfo] I tried squidguard]
that is exactly the same as what I experienced here, with one exception, (using the LocalIP instead of the name) I tried both and both work. but localhost does not. Darrell May wrote: > Pierluigi Miranda, Sent: Monday, April 02, 2001 1:45 AM > > Hmm... on my 4.0.1 the redirection works like a charm - the > > images are not > > there to be found, but this is another story, the blocked.cgi > > is executed. > > > > It seems an Apache configuration issue... Is your system a 4.1.x? > > > > E-Smith should have Lynx installed: try this commands: > > > > lynx http://localhost/ > > > > you should see your E-Smith home page in character mode. If not, try > > > > lynx http://127.0.0.1/ > > > > > > Hi Pierluigi, > > My set up is 4.1.1. All other references to localhost seem to work > except in the squidGuard.conf. This file required the full domain > name URL to work correctly. I agree it doesn't make sense but > that's what we found. > > I had to create the following fix: > > /etc/e-smith/templates-custom/usr/local/squidGuard/squidGuard.conf/ > > 50-acl-local > 60-acl-default > > Edit both files replacing http://localhost/cgi-bin with this entry: > http:{"//${SystemName}.${LocalDomainPrefix}${DomainName}"}/cgi-bin > > Next expand the template with this command: > > /sbin/e-smith/expand-template /usr/local/squidGuard/squidGuard.conf > > Then reconfigure squid to use the new template we just created: > > squid -k reconfigure > > -- > Fixes required to /home/e-smith/files/primary/cgi-bin/blocked.cgi > > This file requires editing to become completely set up for your e-smith > environment. This is a simple cgi web page. Edit and/or remove the > A HREF= and A HREF=mailto: entries, as appropriate for your needs. > > Darrell > > -- > This list is archived > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED]
[e-smith-devinfo] RE: e-smith manager "limitations" (was Re: [e-smith-devinfo] Squidguard GUI)
An interestingg suggestion Would there be people interested in helping create an e-smith 'powerpack' ? -Original Message- From: Gordon Rowell [mailto:[EMAIL PROTECTED]] Sent: woensdag 22 augustus 2001 10:29 To: Jelmer Kuperus Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: e-smith manager "limitations" (was Re: [e-smith-devinfo] Squidguard GUI) On Tue, Aug 21, 2001 at 02:53:56PM +0200, Jelmer Kuperus <[EMAIL PROTECTED]> wrote: > i think that goes for a lot more things in e-smith , i find the management > console is really kind of limmiting > [...] Limiting user visible options is a primary e-smith design goal. We don't expect users to manage Samba, FTP, Apache, etc. - they are done consistently by the manager. Most users (as opposed to "power users") want a limited set of choices so they know what should be entered at each screen. The server is designed for small businesses with no IT staff. They typically don't know, nor want to know, anything about Linux permissions, users, groups, etc. Most of the GUI admin tools expect you to know something about the underlying system. The manager is also designed to be extensible. It's an open framework so you can add as many complex panels as you wish. So, there's nothing to stop you adding a panel with hundreds of widgets on it if you want the "power options". So, if you find it limiting, why not write a panel to ease those limitations? We'll host the contributed packages on our site. Thanks, Gordon -- Gordon Rowell[EMAIL PROTECTED] VP Engineering Network Server Solutions Group http://www.e-smith.com Mitel Networks Corporation http://www.mitel.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org