+ Post New Thread
Results 1 to 6 of 6
*nix Thread, Extract Squid whitelists, blacklists etc in Technical; Hi We currently use Squid and are moving to a new Proxy solution provided by Trend Micro InterScan Web Security ...
  1. #1
    ranj's Avatar
    Join Date
    Feb 2006
    Location
    Birmingham
    Posts
    726
    Thank Post
    97
    Thanked 42 Times in 32 Posts
    Rep Power
    24

    Extract Squid whitelists, blacklists etc

    Hi

    We currently use Squid and are moving to a new Proxy solution provided by Trend Micro

    InterScan Web Security

    Its basically another proxy solution, based on CentOS but seems to fulfil what we want to do.

    Over the years though we have built up custom categories, whitelists, blacklists that we want to export into the trend solution, even if its a bunch of text files that we can visbly see and then manually type into Trend that will be fine.

    Is there a way to do this? Where would i look on the Linux squid backend to find these lists? Could it be done using webmin?

    Basically the director doesnt want us to affect the end user experience, if they were able to access a webiste before he doesnt want this to be impact on the user if Trend categorises it as a unsuitable webiste.

    Anyone who has moved of squid and can share some experience would be greatly appreciated.

    Thanks

  2. #2

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,800
    Thank Post
    110
    Thanked 582 Times in 503 Posts
    Blog Entries
    1
    Rep Power
    223
    Well the good news is that they will most likely be flat text files or possibly in a database like mysql that's easy to export from. If it's a vanilla squid install then you will need to check the squid configurations ACL list, the http_access lines will tell you what files it's using for white and black listing. If you have something like SquidGuard or Dansguardian installed alongside Squid then you need to check those configurations instead.

  3. Thanks to Geoff from:

    ranj (28th November 2012)

  4. #3
    ranj's Avatar
    Join Date
    Feb 2006
    Location
    Birmingham
    Posts
    726
    Thank Post
    97
    Thanked 42 Times in 32 Posts
    Rep Power
    24
    Quote Originally Posted by Geoff View Post
    Well the good news is that they will most likely be flat text files or possibly in a database like mysql that's easy to export from. If it's a vanilla squid install then you will need to check the squid configurations ACL list, the http_access lines will tell you what files it's using for white and black listing. If you have something like SquidGuard or Dansguardian installed alongside Squid then you need to check those configurations instead.
    Do you know where in the Linux file system I may find them. e.g. /etc /srv etc.

    If i was to use webmin, would it be servers, squid? Where within squid would it be, there are so many options!

  5. #4

    3s-gtech's Avatar
    Join Date
    Mar 2009
    Location
    Wales
    Posts
    2,484
    Thank Post
    133
    Thanked 488 Times in 436 Posts
    Rep Power
    138
    I use a flat file with Squid, so for a default Debian install it's in /etc/Squid3/ then I just called the file blacklist.acl. Fairly standard setup I believe.

  6. Thanks to 3s-gtech from:

    ranj (29th November 2012)

  7. #5


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,448
    Thank Post
    865
    Thanked 839 Times in 662 Posts
    Rep Power
    194
    Likely in /var somewhere - run
    grep -lR knownblocked.com /var

    that might show the location up.

    Helping someone move to Trend... what next?

  8. Thanks to tom_newton from:

    ranj (29th November 2012)

  9. #6
    hit
    hit is offline
    hit's Avatar
    Join Date
    Mar 2008
    Location
    London
    Posts
    321
    Thank Post
    47
    Thanked 50 Times in 48 Posts
    Rep Power
    50
    Look in /etc/squid/squid.conf (may be /etc/squid3/... Depending on your distro). Look for lines like
    Code:
    acl BAD_DOMAINS dstdom_regex -i "/etc/squid/bad_domains"
    http_access deny BAD_DOMAINS
    Which should give you a clue as to which files are used and what they are used for.

  10. Thanks to hit from:

    ranj (29th November 2012)

SHARE:
+ Post New Thread

Similar Threads

  1. Squid issues new install
    By ChrisH in forum *nix
    Replies: 5
    Last Post: 10th November 2005, 03:09 PM
  2. Website Blacklist
    By russdev in forum General Chat
    Replies: 13
    Last Post: 7th August 2005, 09:02 PM
  3. VNC, Remote Desktop, etc thread
    By Inox in forum Windows
    Replies: 11
    Last Post: 2nd August 2005, 09:53 PM
  4. Use of domain password (& staff AUP, etc.) ;)
    By mark in forum School ICT Policies
    Replies: 22
    Last Post: 29th June 2005, 02:36 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •