Christoph Haas wrote:
Just one hint: Squid is bad at checking the content of HTTP objects. Unless you use another proxy
Is there anything better than squid?
But whatever header field you check: you are always relying on the web server administrators classification of files. If you just want to allow text/html only and they classify their porn videos as text/html then Squid won't know that it's unwanted. And even if the web server works half-decently then you might get video/wmv as well as video/microsoft-wmv or video/funky-movie-format. You didn't say what you want to accomplish.
My policy is to block wmv, mpg, avi & mp3 and allow all other traffic.
