Navigation
User login
Quote
Anthony Kennedy
At the heart of liberty is the right to define one's own concept of existence, of meaning, of the universe, and of the mystery of human life.
Reply to comment
This work is licensed under a Creative Commons License.
1998-2008 temple of the screaming penguin
TotSP Search
Community
Chatter
- Rankings for WeatherReporter
8 hours 40 min ago - bar and xy-graph
12 hours 2 min ago - Ohhh, let me know when they
1 day 14 hours ago - WTF?
2 days 9 hours ago - Cobb County's nocturnal habits
2 days 18 hours ago - I think you mean "Best Buy."
3 days 4 hours ago - So are there going to be any
3 days 5 hours ago - jimmy carteris the best
3 days 12 hours ago - iphone: saw that too
4 days 4 hours ago - Did you buy it already?
4 days 7 hours ago
Same problem here
Ok i head unsaved my changes in white list so now i have :
created the users an passwords with httpsswd
(user and sfsadmin)
user is limited wit white list ,sfsadmin is unlimited
#enabled:
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd
#added this acl:
acl ncsa_sfsadmin_users proxy_auth sfsadmin
acl ncsa_user_users proxy_auth user
acl whitelist dstdomain "/etc/squid/whitelist"
#acl blacklist dstdomain "/etc/squid/blacklist"
#added this to rules:
http_access allow our_networks
http_access allow localhost
acl our_networks src 192.168.10.0/255.255.255.0
http_access allow ncsa_sfsadmin_users
http_access allow ncsa_user_users whitelist
http_access deny all
in /etc/squid/whitelist i have:
.southernfarmsupply.com
.weeksauction.com
.unitedequipmentauction.com
.unitedequipmentauction.com
.alamoagservicecenter.com
.portal.cnh.com
.dealerportal.irco.com
.doa.state.nc.us
.hudsontrailers.com
.mtadealerconnect.com
.ssconnect.sscoop.com
.wrlonginc.com
.anywho.com
.yp.aol.com
.yp.bellsouth.com
.switchboard.com
.lawnsite.com
.tractorbynet.com
.ridesidebyside.com
.con-way.com
.estes-express.com
.rlcarriers.com
.wilsontrucking.com
.masseyferguson.com
.embmfg.com
.www1.agric.gov.ab.ca
.arcticcat.com
.befco.com
.bransontractor.com
.saltdogg.com
.caseih.com
.gorilla-lift.com
.grasshoppermower.com
.deere.com
.junglejimsap.com
.kascomfg.com
.koryfarm.com
.kubota.com
.newholland.com
.servis-rhino.com
.cabdepot.com
.wellsag.com
.woodsequipment.com
.rockanddirt.com
.msucares.com
.hotlineguides.com
.traderonline.com
.usfarmer.com
.usedfarmequipment.net
.arctic-cat.com
.powersports.honda.com
.kawasaki.com
.thewayout.polarisindustries.com
.suzukicycles.com
.yamaha-motor.com
.bellon.it
.bransontractor.com
.buctraco.com
.casece.com
.caseih.com
.my.dlrportal.com
.s1web4.casecorp.com
.caseih.com
.doa.state.nc.us
.farm.ewg.org
.hotlineguides.com
.my.fastline.com
.fastline.com
.bbispreaders.com
.bbispreaders.com
.con-way.com
.fedexfreight
.fedex.com
.rlcarriers.com
.sefl.com
.ups.com
.wilsontrucking.com
.grasshoppermower.com
.dealer.grasshoppermower.com
.greatbendmfg.com
.evhmfg.com
.gohawkline.com
.hbssystems.com
.dealerportal.irco.com
.kingkutter.com
.fronthitch.com
.lbmfg.com
.my.dlrportal.com
.monroetufline.com
.pyramidequipment.com
.bobcat.com
.briggsandstratton.com
.bushhog.com
.imagemanagement.ws
.curtiscabs.com
.jdpc.deere.com
.johndeere.com
.kubota.com
.kuhn-usa.co
.nadaguides.com
.onlineconversion.com
.multicians.org
.traderonline.com
.servis-rhino.com
.shavermfg.com
.worldispnetwork.com
.ssconnect.sscoop.com
.statesnet.sscoop.com
.homesteadertrailer.com
.hudsontrailers.com
.loadtrail.com
.tractorhouse.com
.tractorhouse.com
.woodsonline.com
.wrlonginc.com
.doa.state.nc.us
Ant when i restart squid i get:
2008/02/05 17:22:53| WARNING: 'bransontractor.com' is a subdomain of '.bransontractor.com'
2008/02/05 17:22:53| WARNING: because of this '.bransontractor.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove 'bransontractor.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.caseih.com' is a subdomain of '.caseih.com'
2008/02/05 17:22:53| WARNING: because of this '.caseih.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.caseih.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.caseih.com' is a subdomain of '.caseih.com'
2008/02/05 17:22:53| WARNING: because of this '.caseih.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.caseih.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.doa.state.nc.us' is a subdomain of '.doa.state.nc.us'
2008/02/05 17:22:53| WARNING: because of this '.doa.state.nc.us' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.doa.state.nc.us' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.hotlineguides.com' is a subdomain of '.hotlineguides.com'
2008/02/05 17:22:53| WARNING: because of this '.hotlineguides.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.hotlineguides.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.hotlineguides.com' is a subdomain of '.hotlineguides.com'
2008/02/05 17:22:53| WARNING: because of this '.hotlineguides.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.hotlineguides.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.my.fastline.com' is a subdomain of '.fastline.com'
2008/02/05 17:22:53| WARNING: because of this '.fastline.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.my.fastline.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.bbispreaders.com' is a subdomain of '.bbispreaders.com'
2008/02/05 17:22:53| WARNING: because of this '.bbispreaders.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.bbispreaders.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.con-way.com' is a subdomain of '.con-way.com'
2008/02/05 17:22:53| WARNING: because of this '.con-way.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.con-way.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.rlcarriers.com' is a subdomain of '.rlcarriers.com'
2008/02/05 17:22:53| WARNING: because of this '.rlcarriers.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.rlcarriers.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.rlcarriers.com' is a subdomain of '.rlcarriers.com'
2008/02/05 17:22:53| WARNING: because of this '.rlcarriers.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.rlcarriers.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.wilsontrucking.com' is a subdomain of '.wilsontrucking.com'
2008/02/05 17:22:53| WARNING: because of this '.wilsontrucking.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.wilsontrucking.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.grasshoppermower.com' is a subdomain of '.grasshoppermower.com'
2008/02/05 17:22:53| WARNING: because of this '.grasshoppermower.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.grasshoppermower.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.dealer.grasshoppermower.com' is a subdomain of '.grasshoppermower.com'
2008/02/05 17:22:53| WARNING: because of this '.dealer.grasshoppermower.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.dealer.grasshoppermower.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.dealerportal.irco.com' is a subdomain of '.dealerportal.irco.com'
2008/02/05 17:22:53| WARNING: because of this '.dealerportal.irco.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.dealerportal.irco.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.dealerportal.irco.com' is a subdomain of '.dealerportal.irco.com'
2008/02/05 17:22:53| WARNING: because of this '.dealerportal.irco.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.dealerportal.irco.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.my.dlrportal.com' is a subdomain of '.my.dlrportal.com'
2008/02/05 17:22:53| WARNING: because of this '.my.dlrportal.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.my.dlrportal.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.my.dlrportal.com' is a subdomain of '.my.dlrportal.com'
2008/02/05 17:22:53| WARNING: because of this '.my.dlrportal.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.my.dlrportal.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.jdpc.deere.com' is a subdomain of '.deere.com'
2008/02/05 17:22:53| WARNING: because of this '.jdpc.deere.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.jdpc.deere.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.jdpc.deere.com' is a subdomain of '.deere.com'
2008/02/05 17:22:53| WARNING: because of this '.jdpc.deere.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.jdpc.deere.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.kubota.com' is a subdomain of '.kubota.com'
2008/02/05 17:22:53| WARNING: because of this '.kubota.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.kubota.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.traderonline.com' is a subdomain of '.traderonline.com'
2008/02/05 17:22:53| WARNING: because of this '.traderonline.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.traderonline.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.traderonline.com' is a subdomain of '.traderonline.com'
2008/02/05 17:22:53| WARNING: because of this '.traderonline.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.traderonline.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.servis-rhino.com' is a subdomain of '.servis-rhino.com'
2008/02/05 17:22:53| WARNING: because of this '.servis-rhino.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.servis-rhino.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.servis-rhino.com' is a subdomain of '.servis-rhino.com'
2008/02/05 17:22:53| WARNING: because of this '.servis-rhino.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.servis-rhino.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.ssconnect.sscoop.com' is a subdomain of '.ssconnect.sscoop.com'
2008/02/05 17:22:53| WARNING: because of this '.ssconnect.sscoop.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.ssconnect.sscoop.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.ssconnect.sscoop.com' is a subdomain of '.ssconnect.sscoop.com'
2008/02/05 17:22:53| WARNING: because of this '.ssconnect.sscoop.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.ssconnect.sscoop.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.hudsontrailers.com' is a subdomain of '.hudsontrailers.com'
2008/02/05 17:22:53| WARNING: because of this '.hudsontrailers.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.hudsontrailers.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.tractorhouse.com' is a subdomain of '.tractorhouse.com'
2008/02/05 17:22:53| WARNING: because of this '.tractorhouse.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.tractorhouse.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.wrlonginc.com' is a subdomain of '.wrlonginc.com'
2008/02/05 17:22:53| WARNING: because of this '.wrlonginc.com' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.wrlonginc.com' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.doa.state.nc.us' is a subdomain of '.doa.state.nc.us'
2008/02/05 17:22:53| WARNING: because of this '.doa.state.nc.us' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.doa.state.nc.us' from the ACL named 'whitelist'
2008/02/05 17:22:53| WARNING: '.doa.state.nc.us' is a subdomain of '.doa.state.nc.us'
2008/02/05 17:22:53| WARNING: because of this '.doa.state.nc.us' is ignored to keep splay tree searching predictable
2008/02/05 17:22:53| WARNING: You should probably remove '.doa.state.nc.us' from the ACL named 'whitelist'
and no password request qnd all sites are available
should i add som more authentication rules ?
And what is up with the websites on white list?