Hello Roberto,
Another way is to have a dedicated YouTube API rewriter or say ICAP filter (as
we do in Web Safety version 6.4) and try to allow/block video by parsing out
the video ID from request URL and looking up its related meta information on
the fly in YouTube database.
See our rewriter
yes, with ufdbguard you put
youtube.com/watch?v=VIDEOID
in a urls file and create a URL table with ufdbGenTable.
ufdbGenTable adds many URLs automagically, i.e.
youtube.com/embed/VIDEOID
youtube.com/get_video_info?video_id=VIDEOID
ytimg.googleusercontent.com/vi/VIDEOID
and many more.
On Thu, Aug 16, 2018, 22:51 Roberto Carna wrote:
> Dear Amos, I've tried to sniff the HTTP requests when I ask for:
>
> https://www.youtube.com/embed/ff9sDLGtnK8?rel=0&showinfo=0
>
> After that I've created a Squidguard exception list as below:
>
> ytimg.com
> googlevideo.com
> googleapis.com
> w
Dear Amos, I've tried to sniff the HTTP requests when I ask for:
https://www.youtube.com/embed/ff9sDLGtnK8?rel=0&showinfo=0
After that I've created a Squidguard exception list as below:
ytimg.com
googlevideo.com
googleapis.com
www.youtube.com/embed/ff9sDLGtnK8?rel=0&showinfo=0
But I can't see t
On Thursday 16 August 2018 at 17:16:42, Alex K wrote:
> Why i have the feeling that this is a troll?
I know what you mean. I had for the most part put Oldman's attitude down to
ignorance of networking and related technical stuff, however given the stunning
silence on his part since he accused
Why i have the feeling that this is a troll?
On Thu, Aug 16, 2018, 14:29 Oldman wrote:
> You wanted to know my server ip and did you expect me to publish this
> online?
>
> I chose to beleive you are wasting my time :)
>
> I am sorry I do not want to be rude but you are wasting my time.
>
Wh
Wouldn't it be better to try it in ufdbguard?
-Original Message-
From: squid-users On Behalf Of Amos
Jeffries
Sent: Thursday, August 16, 2018 4:18 PM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Squid + Squidguard Youtube URL video filtering
On 17/08/18 00:43, Robert
On 17/08/18 00:43, Roberto Carna wrote:
> Dear, I have Squid + Squidguard working OK.
>
> Squidguard is filtering the entire www.youtube.com website.
>
> But now I have to permit just one video from Youtube:
>
> https://www.youtube.com/embed/ff9sDLGtnK8?rel=0&showinfo=0
>
> I have added the bel
On Thursday 16 August 2018 at 14:47:39, Amos Jeffries wrote:
> On second thought; were you wanting to use authentication or something
> other than IPs to permit access to the proxy? such as what that installer
> script was trying to setup for you.
Based on "I am just learning nothing special no s
On second thought; were you wanting to use authentication or something
other than IPs to permit access to the proxy? such as what that
installer script was trying to setup for you.
That would be a different solution, but also on that FAQ page at 8.1
"Using Proxy Authentication".
Amos
_
Dear, I have Squid + Squidguard working OK.
Squidguard is filtering the entire www.youtube.com website.
But now I have to permit just one video from Youtube:
https://www.youtube.com/embed/ff9sDLGtnK8?rel=0&showinfo=0
I have added the below URL as an exception in Squidguard:
www.youtube.com/emb
On 16/08/18 23:50, Antony Stone wrote:
> On Thursday 16 August 2018 at 13:36:50, Alex Crow wrote:
>
>> If it's an internal/RFC1918 IP then it makes no difference to your
>> security in telling the list.
>
> Just in case you (Oldman) don't understand this reference, it's a document
> which explai
On 16/08/18 23:17, Amos Jeffries wrote:>
> The above config will only whitelist after the server cert is known and
> should terminate TLS without any HTTP(S) error page being delivered to
> clients - but can only do so if http_access does _not_ cause a "deny"
> part way through the handshake (eg fr
On Thursday 16 August 2018 at 13:36:50, Alex Crow wrote:
> If it's an internal/RFC1918 IP then it makes no difference to your
> security in telling the list.
Just in case you (Oldman) don't understand this reference, it's a document
which explains in far more detail than I just did what a privat
On Thursday 16 August 2018 at 13:29:04, Oldman wrote:
> You wanted to know my server ip and did you expect me to publish this
> online?
Well, let's just discuss "public" and "private" IP addresses for a moment.
If your proxy server's IP address starts with 192.168, then nobody on the
Internet
If it's an internal/RFC1918 IP then it makes no difference to your
security in telling the list. If it's a public IP address then I hope
you have your squid firewalled off from the internet.
If you at least paste your access.log and cache.log it will help.
Alex
On 16/08/18 12:29, Oldman wro
You wanted to know my server ip and did you expect me to publish this
online?
I chose to beleive you are wasting my time :)
I am sorry I do not want to be rude but you are wasting my time.
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
On Thursday 16 August 2018 at 13:22:38, Oldman wrote:
> The answer is simple :)
>
> Are you kidding?
No.
> Why do you want my proxy ip ?
Because it may be relevant to understanding why your proxy is disallowing
requests from your computer.
> I do not have the knowledge but did you think I w
The answer is simple :)
Are you kidding? Why do you want my proxy ip ?
I do not have the knowledge but did you think I was stupid?
Ha Ha you do not want to help
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
_
On 16/08/18 21:15, pius wrote:
> Hi,
>
> We are planning to control the traffic that goes out from the network. Few
> of them are HTTPS. we managed to whitelist HTTP traffic that going out the
> network. And we are really happy about it. Now only worry we got is the
> HTTPS traffic.
>
> I listen
On Thursday 16 August 2018 at 13:05:31, Oldman wrote:
> Abour your question number 8
>
> This is the screenshot
>
> https://ibb.co/j4DcLp
>
> I just tested trying to access websites
Okay, so firstly that tells me you're using Squid 3.1.23 and not 3.4 as I had
assumed for CentOS 6.
Secondly p
Abour your question number 8
This is the screenshot
https://ibb.co/j4DcLp
I just tested trying to access websites
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
___
squid-users mailing list
squid-users@
On 16/08/18 18:59, Oldman wrote:
> Thanks a lot . I take your advice delete every thing and install a new os
> but I will need help
That is not what was being suggested (unless you installed the whole OS
from a source without knowing what was going on). Just using safe
practices when installing
On Thursday 16 August 2018 at 12:35:40, Oldman wrote:
> See I took your invoice and deleted every thing
> installed Centos 6 32 bit in my VPS
>
> then yum install squid I installed it
Okay, I'm going to guess that you're using Squid 3.4 then.
> I have configured my browser correctly and this
See I took your invoice and deleted every thing
installed Centos 6 32 bit in my VPS
then yum install squid I installed it
I have configured my browser correctly and this is my conf file
https://pastebin.com/raw/hxkMNbss
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com
On Thursday 16 August 2018 at 12:14:04, Oldman wrote:
> OK I am newbie so please bear with me
>
> I am just learning nothing special no serious project
>
> what to change in my conf so I can access internet :)
Let's start with some basics...
1. What operating system have you installed Squid on
On 16/08/18 19:34, David Touzeau wrote:
> Thanks Amos for details.
>
> Working like a charm now.
>
> Instead of sending https://192.168.1.122:443/myguard.php?rule-id=0&;
>
> Helper sends 192.168.1.122:443
>
That is only useful if the server at that IP:port can present the client
with a T
OK I am newbie so please bear with me
I am just learning nothing special no serious project
what to change in my conf so I can access internet :)
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
___
squid-us
On Thursday 16 August 2018 at 11:53:16, Vacheslav wrote:
> Why not just use an ad & porn blocking dns server?
Because that does something totally different from what Oldman appears to be
trying to do?
Antony.
> -Original Message-
> From: squid-users On Behalf Of
> Antony Stone Sent:
Why not just use an ad & porn blocking dns server?
-Original Message-
From: squid-users On Behalf Of
Antony Stone
Sent: Thursday, August 16, 2018 12:50 PM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Allow one country only be able to use squid proxy?
On Thursday 16 A
On Thursday 16 August 2018 at 11:39:29, Oldman wrote:
> I can get block of a country ip from
>
> https://www.ip2location.com/blockvisitorsbycountry.aspx
>
> Where to put that in conf file so I from a particular country only can
> access internet?
Er, you are suggesting that you will run a Squid
I can get block of a country ip from
https://www.ip2location.com/blockvisitorsbycountry.aspx
Where to put that in conf file so I from a particular country only can
access internet?
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
_
Hi,
We are planning to control the traffic that goes out from the network. Few
of them are HTTPS. we managed to whitelist HTTP traffic that going out the
network. And we are really happy about it. Now only worry we got is the
HTTPS traffic.
I listen 2 port in squid. 3129(HTTP) and 3130 (HTTPS).
It's not nice to practice hypocrisy, he who believes in evolution goes to
magicians!
-Original Message-
From: Eliezer Croitoru
Sent: Wednesday, August 15, 2018 10:35 AM
To: 'Vacheslav'
Cc: squid-users@lists.squid-cache.org
Subject: RE: [squid-users] microsoft list
Well..
It's a Squid
I hung onto CentOS 6 for a while but it’s no longer secure enough. You really
ought to move versions.
I would prefer to see Eliezer efforts used to make 4.2 available in the stable
repo.
Thanks
Mike
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Eliezer Cr
Thanks Amos for details.
Working like a charm now.
Instead of sending https://192.168.1.122:443/myguard.php?rule-id=0&;
Helper sends 192.168.1.122:443
" url_rewrite_access deny CONNECT" is not a solution because, everything using
SSL today ( thanks to Google that wants to encrypt all th
On Wednesday 15 August 2018 at 21:09:57, Oldman wrote:
I won't change any thing unless I am sure here.
On 15.08.18 21:20, Antony Stone wrote:
Well, you've certainly changed quite a lot of the standard config in the file
you showed us earlier.
What was dangerous ? Did you mean I could be ha
37 matches
Mail list logo
