Re: SQUID+ANTIVIRUS: tutto ok

To: debian-italian@lists.debian.org
Subject: Re: SQUID+ANTIVIRUS: tutto ok
From: Mauro <mauro.sanna6@tin.it>
Date: Mon, 15 Dec 2003 12:01:28 +0100
Message-id: <[🔎] 200312151201.28647.mauro.sanna6@tin.it>
In-reply-to: <[🔎] 1071480606.3fdd7f1ede329@webmail.unical.it>
References: <[🔎] 008301c3bff4$ae5cab20$f90461a0@caiunical> <[🔎] 200312111751.45405.mauro.sanna6@tin.it> <[🔎] 1071480606.3fdd7f1ede329@webmail.unical.it>

> classico è un demone ok? Sul server di posta ti va bene clamav?
> Non è che sai dirmi come ottimizzare la configurazione di squid? Ad
> esempio come hai impostato i parametri sul tempo di vita dei file
> in cache? Se hai bisogno scrivi.
> Ciao a te e a tutta la ml.

Io ho preso clamav da www.apt-get.org.
Per ora sul server di posta va bene.
Ti do i paramentri del mio squid.conf:

icp_port 0

hierarchy_stoplist cgi-bin ?

acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https, snews
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl Safe_ports port 901         # SWAT
acl purge method PURGE
acl CONNECT method CONNECT

acl localnet src 192.168.0.0/16
acl per src 192.168.5.1
http_access allow manager localhost
http_access allow manager per
http_access deny manager
http_access allow purge localhost
http_access allow purge per
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow localnet
http_access deny all

cache_mem 64 MB

cache_dir ufs /var/spool/squid 8000 16 256

dns_nameservers 127.0.0.1

redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf

redirect_children 12

reference_age 4 months

half_closed_clients off

forwarded_for off

acl snmpManager src 192.168.8.7/255.255.255.255
acl snmppublic snmp_community public

snmp_port 3401

snmp_access allow snmpManager
snmp_access allow snmppublic localhost
snmp_access deny all

cache_mgr proxymaster@localhost

visible_hostname unknown

anonymize_headers deny From Referer Server
anonymize_headers deny User-Agent WWW-Authenticate Link
fake_user_agent Nutscrape/1.0 (CP/M; 8-bit)

Come puoi vedere per le acl utilizzo squidGuard.
Ciao.

Reply to:

References:
- SQUID+ANTIVIRUS: tutto ok
  - From: "Ing. Antonello Cairo" <a.cairo@unical.it>
- Re: SQUID+ANTIVIRUS: tutto ok
  - From: Mauro <mauro.sanna6@tin.it>
- Re: SQUID+ANTIVIRUS: tutto ok
  - From: "Ing. Antonello Cairo" <a.cairo@unical.it>

Prev by Date: [sid] logrotate nn ruota piu' :D
Next by Date: Re: Suggerimento scheda wireless portatile
Previous by thread: Re: SQUID+ANTIVIRUS: tutto ok
Next by thread: LCD "allungato"
Index(es):
- Date
- Thread