On 8/11/2012 8:06 PM, J Webster wrote:
I see some logs of spyware sites being blocked by squidguard.
I presume these are sites that have cross domain xml or javascript or
other things built in.
Will squidguard block the whole page even if there is one script in it
that might be spyware?
2012-08-11 17:10:31 [3630] Request(default/spyware/-)
http://won.images.streamray.com/images/streamray/won/jpg/m/6/milf36_150.jpg
93.23.197.116/- user GET $
2012-08-11 17:10:36 [3630] Request(default/spyware/-)
http://graphics.streamray.com/crossdomain.xml 93.23.197.116/- user GET
REDIRECT
Is there a way to provide a page saying this site has malware and has
been blocked rather than just the default block page?
ie 2 different blocking html pages?
you should look at squidguard ACLs and you can ask at the squidguard
mailing list: squidguard@xxxxxxxxx
or:
http://www.squidguard.org/Doc/examples.html
Regards,
Eliezer
--
Eliezer Croitoru
https://www1.ngtech.co.il
IT consulting for Nonprofit organizations
eliezer <at> ngtech.co.il