I am using the 'bigblacklist' for my block list and the file porn/domains has 3 subdomains of playboy.com listed. If you remove these everything works as expected. I think I will write a perl script to check for other subdomains.
Thanks again Rick and thanks to everyone else who responded.
Cheers. --JohnM
Rick Matthews wrote:
John Miezitis wrote:
I now have squidGuard working with a simple config shown below. My limited testing so far has shown that sites in the porn/domains file are being blocked and in most cases are blocked for all variations {www|www1|www2..etc}.domain.com. I have found one exception to this.
The domain 'playboy.com' is listed in the domains file and if I try to access http://playboy.com I get redirected to my blocked site page. If I access http://www.playboy.com I get through to the playboy site.
Try this:
'cat porn/domains | grep playboy.com'
We know you'll find 'playboy.com' and 'www.playboy.com', but I'm
betting you'll find another subdomain of playboy.com.
Here's the way it works: - If playboy.com is the only playboy.com domain in the file, squidGuard will block: "*.playboy.com/*".
- Let's say you add "iraqi.playboy.com" to the porn domains file.
Now squidGuard will block:
"playboy.com/*" "*.iraqi.playboy.com/*"
- You've added "www.playboy.com", so now it will block:
"playboy.com/*" "*.iraqi.playboy.com/*"
"*.www.playboy.com/*"
The solution is to remove all but the root domain (playboy.com).
Rick
I have added www.playboy.com to the porn/domains list and I now get redirected to the blocked site page.
Can anybody reproduce this behaviour? Any other domains that behave in a similar way?
Why is this happening?
> cat squidGuard.conf logdir /usr/local/squidGuard/log dbhome /usr/local/squidGuard/blacklists
dest ads { domainlist ads/domains urllist ads/urls log ads.log }
dest porn { domainlist porn/domains urllist porn/urls log porn.log }
acl { default { pass !ads !porn all redirect http://server.domain/cgi-bin/squidGuard.cgi?cl ientaddr=%a&clientname=%n&clientuser=%i&clientgroup=%s&targetclass=%t&url=%u } }
Thanks. Cheers. --JohnM
