or try squidguard Helmut Schleyer metatalk Communication At Work www.metatalk.de Tel 09761-398880

-----Ursprüngliche Nachricht----- Von: da_bug [mailto:da_bug@gmx.net] Gesendet: Donnerstag, 3. Januar 2002 19:40 An: suse-security@suse.com Betreff: Re: [suse-security] Filtering Software

Hi,

OoSA> is there any working filtering-software for Squid, which stops the LAN from OoSA> fetching URLs with pornographic and/or securityrisk-relevant sites (maybe OoSA> Warez and especially virus-containing sites) ?

in squid.conf you can block URL's with the AccessControlLists like this:

acl rule1 dstdomain anydomain.com acl rule2 dst 1.2.3.4

http_access deny rule1 http_access deny rule2

Now "anydomain.com" and the ip (it's useful to put in the ip of the domain here :)) "1.2.3.4" are denied. If the clients cannot use http without squid everything should be fine with this..(for me it works good)

Bye. <da_bug@gmx.net>

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com

u may also try regex rules in your squid.conf file.. this is good if u know exaclty what u need to block.. such as cmd.exe or .eml files that have viruses... however, the more regexes you have, the more CPU power each line will consume.. but u can get off well enough with a thousand or so on a good squid box.. --- Ray Leach <raymondl@knowledgefactory.co.za> wrote: > Hi

Yes, try squidguard. It comes with pre built filter lists.

Ray

OKDesign oHG Security Administrator wrote:

...

Hi folks,

is there any working filtering-software for Squid, which stops the LAN from fetching URLs with pornographic and/or securityrisk-relevant sites (maybe Warez and especially virus-containing sites) ? If not, maybe there is any good filtering-software for the clients (running W2k). The problem is, that I have no budget for this :-( God damn the ignorant bosses... So I need a free software.

Is there any ?

thx. Crest

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com

--

----------------------------------------------------------------------

Raymond Leach Cell:+27-82-416-1410 Tel:+27-11-444-5006 Fax:+27-11-444-5007 eMail:raymondl@knowledgefactory.co.za www:http://www.knowledgefactory.co.za "No matter where you go, there you are ..."

----------------------------------------------------------------------

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com

__________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com

squidguard has a pretty good blacklist, you can easily add to it. Commercial products will not tell you what they block (i.e. give a list, you can of course query sites to see if they are blocked). The value of squidguard is that it is free (nice) and you can easily examine the list, and unlike commercial ones tends not to go overboard (like blocking complete university medical subdomains because they discuss BREAST cancer and the like. Kurt Seifried, kurt@seifried.org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://www.seifried.org/security/ ----- Original Message ----- From: "OKDesign oHG Security Administrator" <security@okdesign.de> To: <suse-security@suse.com> Sent: Friday, January 04, 2002 2:09 AM Subject: [suse-security] Filtering Software: Will try out squidguard

Okay, thanks for the hints towards squidguard. Took a first look at it and it sounds quite interesting. Does someone know how usable the blacklist used by squidguard is ?

Stephan

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com