schmitz@iae.de wrote:
>
> Hello
>
> I have trouble with my acl list. The log file show me no errors. This is my
> ACL list. ind the two porn list is the word xxx sex ... inside. This sites
> must be Access-Denied. But it doesn't work. Why??
> # http_access deny all
> http_access allow password
Because the above allows all users access to everything with no
restrictions. The order of http_access rules is important.
> http_access deny porn
> http_access allow notporn
> http_access deny !Safe_ports
> http_access deny Dangerous_ports
> http_access deny CONNECT !SSL_ports
> http_access deny all
I would suggest the following:
http_access deny !password
http_access deny !Safe_ports
http_access deny Dangerous_ports
http_access deny CONNECT !SSL_ports
http_access allow notporn password
http_access deny porn
http_access allow password
http_access deny all
Also, using both Safe_ports and Dangerous_ports seems a bit overkill.
The two can be merged into one.
Reards
Henrik Nordström
Squid Hacker
Received on Tue Oct 16 2001 - 01:59:00 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:02:45 MST