[ilugd] squidguard not blocking
Hello All, We are trying to block the URL's using the squidguard but somehow its not working. Could someone please suggest some resolution? I have tried getting help of google and came across this url: http://www.aerospacesoftware.com/squidguard-howto.html, however it didn't work. --- Configuration of the server is as follows: OS - CentOS 4.4 (Final) Kernel - 2.6.9-42.0.10.plus.c4smp Squid Cache - Version 2.5.STABLE6 SquidGuard: 1.2.0 Sleepycat Software: Berkeley DB 4.2.52: (February 22, 2005) [EMAIL PROTECTED] ~]# squidguard -v SquidGuard: 1.2.0 Sleepycat Software: Berkeley DB 4.2.52: (February 22, 2005) 2007-04-12 15:57:43 [13376] init domainlist /var/lib/squidguard/db/adult/domains 2007-04-12 15:57:55 [13376] create new dbfile /var/lib/squidguard/db/adult/domains.db 2007-04-12 15:57:55 [13376] init urllist /var/lib/squidguard/db/adult/urls 2007-04-12 15:57:56 [13376] create new dbfile /var/lib/squidguard/db/adult/urls.db 2007-04-12 15:57:56 [13376] init expressionlist /var/lib/squidguard/db/adult/expressions 2007-04-12 15:57:56 [13376] init domainlist /var/lib/squidguard/db/warez/domains 2007-04-12 15:57:56 [13376] create new dbfile /var/lib/squidguard/db/warez/domains.db 2007-04-12 15:57:56 [13376] init urllist /var/lib/squidguard/db/warez/urls 2007-04-12 15:57:56 [13376] create new dbfile /var/lib/squidguard/db/warez/urls.db 2007-04-12 15:57:56 [13376] init expressionlist /var/lib/squidguard/db/warez/expressions 2007-04-12 15:57:56 [13376] squidGuard 1.2.0 started (1176373663.216) 2007-04-12 15:57:56 [13376] db update done 2007-04-12 15:57:56 [13376] squidGuard stopped (1176373676.294) In /etc/squid/squid.conf redirect_program /pathtosquidguard/squidguard redirect_children 5 Thanks in advance, Sudeep No need to miss a message. Get email on-the-go with Yahoo! Mail for Mobile. Get started. http://mobile.yahoo.com/mail ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] squidguard not blocking
Sudeep Sharma [EMAIL PROTECTED] writes: We are trying to block the URL's using the squidguard but somehow its not working. Could someone please suggest some resolution? [snip] -- [root at linux ~]# squidguard -v SquidGuard: 1.2.0 Sleepycat Software: Berkeley DB 4.2.52: (February 22, 2005) [snip output] 2007-04-12 15:57:56 [13376] squidGuard stopped (1176373676.294) I am not familiar with squidguard, but the howto suggests you look at squidGuard.log to see what has stopped it. There's probably an option to increase logging level too. just guessing PJ ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] squidguard not blocking
Hi PJ, --- PJ [EMAIL PROTECTED] wrote: I am not familiar with squidguard, but the howto suggests you look at squidGuard.log to see what has stopped it. There's probably an option to increase logging level too. just guessing PJ Thanks for the reply, however i have checked the logs and didnt find anything fishy, our squid.conf has redirect_program /usr/bin/squidguard -c /etc/squid/squidguard.conf and when we do: ps -aux | grep squid , we get --- root 14239 0.0 0.0 7740 960 ?Ss 17:33 0:00 squid -D squid14241 0.0 0.5 9364 5304 ?S17:33 0:00 (squid) -D squid14243 0.0 0.1 3064 1020 ?Ss 17:33 0:00 (squidguard) -c /etc/squid/squidguard.conf squid14244 0.0 0.1 4128 1020 ?Ss 17:33 0:00 (squidguard) -c /etc/squid/squidguard.conf squid14245 0.0 0.1 4472 1012 ?Ss 17:33 0:00 (squidguard) -c /etc/squid/squidguard.conf squid14246 0.0 0.1 4472 1012 ?Ss 17:33 0:00 (squidguard) -c /etc/squid/squidguard.conf squid14247 0.0 0.1 4380 1012 ?Ss 17:33 0:00 (squidguard) -c /etc/squid/squidguard.conf squid14253 0.0 0.0 2172 288 ?Ss 17:33 0:00 (unlinkd) root 14378 0.0 0.0 4120 648 pts/0S+ 18:03 0:00 grep squid Is this information helpful enough ?? Though i am trying to find out how to increase the level of logging which i will mail later. Thanks Sudeep Expecting? Get great news right away with email Auto-Check. Try the Yahoo! Mail Beta. http://advision.webevents.yahoo.com/mailbeta/newmail_tools.html ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
On Thursday 12 April 2007 11:14, Sandip Bhattacharya wrote: There is an existing Planet(http://www.planetplanet.org/) instance for ILUGD members at http://www.lug-delhi.org/blogs/ . Can we move this to http://planet.linux-delhi.org or http://www.linux-delhi.org/blogs or http://www.linux-delhi.org/planet ? Would someone else be interested in hosting it on such a domain? I could set up planet.linux-delhi.org, but how do we get the data in? Need to find a decent, Debian-packaged, preferably Perl but Python or Ruby would do in a pinch Blogging package too. Regards, -- Raju -- Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F It is the mind that moves ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Raj Mathur wrote: I could set up planet.linux-delhi.org, but how do we get the data in? Do you mean beyond using the planet script ? That aggregates data I guess - -- You see things; and you say 'Why?'; But I dream things that never were; and I say 'Why not?' - George Bernard Shaw -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Red Hat - http://enigmail.mozdev.org iD8DBQFGHiadXQZpNTcrCzMRAm4lAKCoBcfwcEI7yu69I6/NYQ8ohc7k2wCfcmFK PdAMo/ZhnylQV+dkIn//dSM= =pdKa -END PGP SIGNATURE- ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
[ilugd] Zope: Connectivity with MySQL
Trying to connect Zope/Plone with MySQL. Discovered Zope has built-in support only with Gadfly. For other databases u need to use Database Adapters. There is a Zope Product ZMySQLDA, which has to be installed in (some ??) Products directory. Did all that, but could not find ZMySQLDA as an installed product for Zope. Am I on the right track? ZMySQLDA has not been updated since 2001. Are there other products / methods now or am i missing some things?? Anand Shankar ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
On Thursday 12 April 2007 18:40, Sandip Bhattacharya wrote: Raj Mathur wrote: On Thursday 12 April 2007 11:14, Sandip Bhattacharya wrote: There is an existing Planet(http://www.planetplanet.org/) instance for ILUGD members at http://www.lug-delhi.org/blogs/ . Can we move this to http://planet.linux-delhi.org or http://www.linux-delhi.org/blogs or http://www.linux-delhi.org/planet ? Would someone else be interested in hosting it on such a domain? I could set up planet.linux-delhi.org, but how do we get the data in? Need to find a decent, Debian-packaged, preferably Perl but Python or Ruby would do in a pinch Blogging package too. Planet is a really simple bunch of scripts. It is an offline generator and so no scripts are ever directly exposed to the world. You can just dump the source somewhere and make it run via cron for ages without much security issues. I can pass on the current config file and graphics that is there. Since on the first run, the aggregator will fetch the data directly from blogs and also since only the last few blogs are kept, you won't require any prior data. Ah, thanks to Sankarshan who explained what a planet is to me in painful detail on IRC! OK, this should be pretty trivial, since we just need to setup a single script. OTOH, question for the list: do you want a planet? Regards, -- Raju -- Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F It is the mind that moves ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
Raj Mathur wrote: OTOH, question for the list: do you want a planet? The people who do (till now), had contacted me over the last couple of years, and I have setup their blogs in the planet on their request only. So if you are looking for ayes, you can straightaway count theirs, right? If you are looking for a fresh vote: +1 - Sandip ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
On 4/12/07, Raj Mathur [EMAIL PROTECTED] wrote: [..] OTOH, question for the list: do you want a planet? Yes, it's great (esp its RSS feed). But thought there already is one? http://www.lug-delhi.org/blogs/ Vish [..] ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] Moving the ILUGD planet to linux-delhi.org
Yes, it's great (esp its RSS feed). But thought there already is one? http://www.lug-delhi.org/blogs/ Yes. That is the one I am trying to move to a more official place. - Sandip ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
[ilugd] [Fwd: [Webappsec] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug]
if you use firebug, better upgrade. Original Message Subject: [Webappsec] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug Date: Wed, 4 Apr 2007 20:23:41 +0100 From: pdp (architect) [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], WASC Forum [EMAIL PROTECTED], webappsec @OWASP [EMAIL PROTECTED] http://www.gnucitizen.org/blog/firebug-goes-evil There is critical vulnerability in Firefox/Firebug which allows attackers to inject code inside the browser chrome. This can lead to a lot of problems. Theoretically everything is possible, from modifying the user file system to launching processes, installing ROOTKITs, you name it. I recommend to disable Firebug for now until the issue is fixed. The issues is a bit critical since Firebug is one of the most popular extensions for Firefox. Given the fact that a lot of the Firefox users are geeks, the chances to have Firebug installed in a random Firefox client are quite high. I wrote two POC to demonstrate the issue. You can find them from the page on the top of this message. The first POC runs calc.exe and cmd.exe on windows systems. The second POC does a count down from 10 to 0 and executes calc.exe to prove that automatic execution is possible. -- pdp (architect) | petko d. petkov http://www.gnucitizen.org ___ Webappsec mailing list [EMAIL PROTECTED] http://lists.owasp.org/mailman/listinfo/webappsec -- raj shekhar facts: http://rajshekhar.net | opinions: http://rajshekhar.net/blog I dare do all that may become a man; Who dares do more is none. ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
Re: [ilugd] [Fwd: [Webappsec] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug]
Similarly this xpi creates many vulnerability like u might heard of www.jajah.com that provides VOIP. but their is a an firefox extension of jajah.xpi dat's lhv easy interface to register with any phone no provide a plateform to Spoil any phone balancehttp://honeytech.wordpress.com/2007/02/15/exploit-of-jajah-webtelephony-spoil-any-phone-balance/ reference:- http://honeytech.wordpress.com/2007/02/15/exploit-of-jajah-webtelephony-spoil-any-phone-balance/ On 4/12/07, Raj Shekhar [EMAIL PROTECTED] wrote: if you use firebug, better upgrade. Original Message Subject: [Webappsec] Firefox extensions go Evil - Critical Vulnerabilities in Firefox/Firebug Date: Wed, 4 Apr 2007 20:23:41 +0100 From: pdp (architect) [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], WASC Forum [EMAIL PROTECTED], webappsec @OWASP [EMAIL PROTECTED] http://www.gnucitizen.org/blog/firebug-goes-evil There is critical vulnerability in Firefox/Firebug which allows attackers to inject code inside the browser chrome. This can lead to a lot of problems. Theoretically everything is possible, from modifying the user file system to launching processes, installing ROOTKITs, you name it. I recommend to disable Firebug for now until the issue is fixed. The issues is a bit critical since Firebug is one of the most popular extensions for Firefox. Given the fact that a lot of the Firefox users are geeks, the chances to have Firebug installed in a random Firefox client are quite high. I wrote two POC to demonstrate the issue. You can find them from the page on the top of this message. The first POC runs calc.exe and cmd.exe on windows systems. The second POC does a count down from 10 to 0 and executes calc.exe to prove that automatic execution is possible. -- pdp (architect) | petko d. petkov http://www.gnucitizen.org ___ Webappsec mailing list [EMAIL PROTECTED] http://lists.owasp.org/mailman/listinfo/webappsec -- raj shekhar facts: http://rajshekhar.net | opinions: http://rajshekhar.net/blog I dare do all that may become a man; Who dares do more is none. ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/ -- Honey Singh 3rd yr RKGIT http://honeytech.wordpress.com/ my Music Video:- http://video.google.com/videoplay?docid=-8752423381028565635q=controlmyself ___ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
