...making Linux just a little more fun!
Deividson Okopnik [deivid.okop at gmail.com]
Hello everyone.
Im needing to configure a temporary internet server here, and after reading a lot, I'm kinda confused :P
I need a non-transparent proxy (asks users for theyr username/pass), with the ability to block access to certain pages and services (like www.orkut.com or MSN), plus the ability to generate usage reports.
I saw several programs that can do that, but each article I read uses
a diferent combo - thats what confused me 
So, the question is, what software would you use to create such a configuration?
Thanks for the input
Deividson
René Pfeiffer [lynx at luchs.at]
On Mar 04, 2009 at 1152 -0300, Deividson Okopnik appeared and said:
> Hello everyone. > > Im needing to configure a temporary internet server here, and after > reading a lot, I'm kinda confused :P > > I need a non-transparent proxy (asks users for theyr username/pass), > with the ability to block access to certain pages and services (like > www.orkut.com or MSN), plus the ability to generate usage reports. > > I saw several programs that can do that, but each article I read uses > a diferent combo - thats what confused me
I'd use Squid+Netfilter. Squid offers authentication and can use external filters to block access to certain URLs. You can even check downloads for viruses, if needed. The plugins doing the URL checks are called "redirectors". Basically Squid hands every request to an external script, this script parses the URL and returns the URL that Squid should fetch. Squirm is one redirector, but I am not sure if it's still maintained yet (http://squirm.foote.com.au/). A simple Perl script can do the job, though.
Best,
René.
Francis Daly [francis at daoine.org]
On Wed, Mar 04, 2009 at 11:52:42AM -0300, Deividson Okopnik wrote:
Hi there,
> I need a non-transparent proxy (asks users for theyr username/pass), > with the ability to block access to certain pages and services (like > www.orkut.com or MSN), plus the ability to generate usage reports.
> So, the question is, what software would you use to create such a > configuration?
I use squid as a http proxy, although I don't currently require authentication to use it. (Did use an ldap-backed authentication method in the past, though, so I know it's doable.) I use squidguard to block access to certain domain suffixes, url prefixes, and url regexes, plus a thttpd to serve my "this was blocked" response. That might be adequate for your list of pages and services.
I don't generate usage reports, but you can pick your favourite program to do that. Either it will accept the default squid log format, or you can modify the squid log to the "common log format" that many http servers generate. "analog" and "webalizer" are familiar names. Find one that advertises reports that you like the look of, and you're done.
Good luck,
f
-- Francis Daly francis@daoine.org
Predrag Ivanovic [predivan at nadlanu.com]
On Wed, 04 Mar 2009 11:52:42 -0300 Deividson Okopnik wrote:
>Hello everyone. > >Im needing to configure a temporary internet server here, and after >reading a lot, I'm kinda confused :P > >I need a non-transparent proxy (asks users for theyr username/pass), >with the ability to block access to certain pages and services (like >www.orkut.com or MSN), plus the ability to generate usage reports.
Check out SafeSquid, it is 'Content Filtering Internet Proxy'</buzzword>. It can be used alone, and in combination with Squid. Version for internal use, up to 20 users, is free.
There is a lot of documentation on the site[1], and feature comparasion of different editions is at [2].
[1]http://www.safesquid.com/html/portal.php
[2]http://www.safesquid.com/html/portal.php?page=89
Pedja
-- People usually get what's coming to them ... unless it's been mailed.
Thomas Adam [thomas.adam22 at gmail.com]
2009/3/10 Predrag Ivanovic <predivan@nadlanu.com>:
> On Wed, 04 Mar 2009 11:52:42 -0300 > Deividson Okopnik wrote: > >>Hello everyone. >> >>Im needing to configure a temporary internet server here, and after >>reading a lot, I'm kinda confused :P >> >>I need a non-transparent proxy (asks users for theyr username/pass), >>with the ability to block access to certain pages and services (like >>www.orkut.com or MSN), plus the ability to generate usage reports. > > Check out SafeSquid, it is 'Content Filtering Internet Proxy'</buzzword>. > It can be used alone, and in combination with Squid. > Version for internal use, up to 20 users, is free.
I'd go with DansGuardian myself (www.dansguardian.org) but then I am biased. :P
-- Thomas Adam
Deividson Okopnik [deivid.okop at gmail.com]
> On Wed, 04 Mar 2009 11:52:42 -0300 > Deividson Okopnik wrote: > >>Hello everyone. >> >>Im needing to configure a temporary internet server here, and after >>reading a lot, I'm kinda confused :P >> >>I need a non-transparent proxy (asks users for theyr username/pass), >>with the ability to block access to certain pages and services (like >>www.orkut.com or MSN), plus the ability to generate usage reports. > > Check out SafeSquid, it is 'Content Filtering Internet Proxy'</buzzword>. > It can be used alone, and in combination with Squid. > Version for internal use, up to 20 users, is free.
I'd rather go with something really free - using squid atm, and it's
working great (plus i have more than 20 users :X)