On Sat, Oct 19, 2013 at 12:27:38AM +0200, Stefan Wollny wrote: > Hi there, > > having a personal dislike of Facebook (and the MeeToo-systems alike) > for their impertinent sniffing for private data I tried on my laptop to > block facebook.com via hosts-file.
<snip> > My question is on the squid-server I have running at home: What > would make more sense - blocking facebook.com via pf.conf alike or are > there reasons to use squid's ACL instead? Performance? Being > ultra-paranoid and implementing both (or even additionally the > hosts-file-block?)? From my understanding squid should not be able to > block https-traffic as it is encrypted - or am I wrong here? That is a misunderstanding, squid couldn't care less about encryption. > Curious if there is a particular (Open)BSD solution or simply how you > 'guys and gals' would do it. I am in a similar situation (squid at home) and I simply have a blacklist with lines like these: doubleclick facebook scorecardresearch Works like a charm for me, and no need to look up IP address blocks or anything like that. And since I am the only user here there's no collateral damage. ;-) > Thank you for sharing your thoughts. > > Cheers, > STEFAN CU, Sico. --
