If something is seriously wrong, squidGuard will go into emergency mode and pass all. What entries are being logged to squidGuard.log?
Your problem may be solved with the answer to that first question, but I'll include a few more thoughts just in case it isn't. I realize that the information that you posted from you config file is not complete, but I don't want to make assumptions. You don't show any redirects, for example, and it's important that you have a redirect with each acl statement that ends with 'none' (at a minimum). I don't know if your time constraints are set up properly. It would help if you'd post a more complete version of your config file. Does squid's access.log show the user names that you are expecting? Does squid's access.log show the requestor's ip as you are expecting? Is squid set up as a transparent proxy? I don't know if any of your users are listed in multiple userlists, but remember that they will always be included in the first source group that they match. I don't know if the ip/8 groups are different for grownups and kids, but if so, grownups at kids ips will process by the default acl. The same is true for kids at grownup ips. That should be enough to get you started. ;) Rick Matthews > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:owner-squidguard@;relay1.teledanmark.no]On Behalf Of Michael Gens > Sent: Friday, November 15, 2002 1:44 AM > To: [EMAIL PROTECTED] > Subject: userlist does not work? > > > Hello! > > I use squid and squidguard from SuSE 8.1 in combination > with PAM authentication. > > Works fine, so far. With one exception: > > In /etc/squidguard.conf I defined the using of userlist: > > ... > > src adults { > userlist /var/squidGuard/access/adult > } > > src grownups { > ip <private IP>/8 > # AND > userlist /var/squidGuard/access/grownup # ident grownups > } > > src kids { > ip <private IP>/8 > userlist /var/squidGuard/access/kid # ident kids > } > > ... > > acl { > adults { > pass all > } > grownups within work-time-g { > pass !blacklists all > } else { > pass none > } > > kids within work-time-k { > pass !blacklists all > } else { > pass none > } > > default { > pass none > } > } > > > In /var/squidGuard/access/<file> > > the (squid / squidguard - PC known) usernames are listed like this: > > frank > jim > > > > Inspite of correct authentication it does not work! > > If a user of userlist e.g. grownup is accessing a blacklisted URL > like www.sex.com the site is shown. > > Did I misunderstood something? What is wrong?? > > Can anybody help?? > > Thank you for your help in advance!! > > > > -- > Rgds. > > > > _ # Michael # _ >
