Denuncie   Favoritos   Indicar  

Bloqueio de msn não funciona

1. Bloqueio de msn não funciona

Luis Henrique Laguna
laguna
(usa Ubuntu)

Enviado em 26/10/2010 - 11:30h

Galera o problema é o seguinte, tenho um servidor em um cliente meu, e ele me pediu que fizesse o bloqueio do msn em algumas maquina, mais porem desde a ultima atualização do msn não consigo mais fazer o bloqueio pelo squid, e se fosse fazer pelo firewall iria ficar bem grande, segue abaixo meu squid.conf, arquivo msn1.txt e msn2.txt
==============================================================
Squid.conf

authenticate_cache_garbage_interval 1 days

# ACCESS CONTROLS
#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl Safe_ports port 44405
acl Safe_ports port 55557
acl Safe_ports port 55970
acl Safe_ports port 55971
acl Safe_ports port 55960
acl Safe_ports port 55961
acl Safe_ports port 55962
acl Safe_ports port 55901
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost



#------------------------------------------------------------------
#ACL com as MAC

acl admin arp "/etc/squid/admin.txt"

#---------------------------------------------------------------------

#Bloqueando MSN
acl msn1 dstdomain -i "/etc/squid/msn/msn1.txt"
acl msn2 url_regex -i "/etc/squid/msn/msn2.txt"
acl msn url_regex -i /gateway/gateway.dll


#----------------------------------------------------------------------


#Bloqueando os grupos

http_access allow admin !msn !msn1 !msn2

#http_access allow localhost

#Proxy externo
http_access deny all

#--------------------------------------------------------------------------

icp_access allow all

http_port 3128 transparent

hierarchy_stoplist cgi-bin ?

#Cache feito em memoria RAM
#cache_mem 64 MB

#Tamando arquivos em cache na memoria RAM
#maximum_object_size_in_memory 500 KB

refresh_pattern ^http:// 30 40% 20160
memory_replacement_policy heap LFUDA
cache_replacement_policy heap GDSF

#10000 em MB (10 GB),temos 16 pastas com 256 subpastas cada uma
cache_dir ufs /var/spool/squid 10000 16 256

minimum_object_size 0 KB
maximum_object_size 800 MB

cache_swap_low 90 #Limite da percentagem de cache
cache_swap_high 95 #Quando atingir 95% da percentagem, excluir at� voltar a 90%

access_log /var/log/squid/access.log

cache_log /var/log/squid/cache.log

cache_store_log /var/log/squid/store.log

logfile_rotate 0

pid_filename /var/run/squid.pid

acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY

#Suggested default:
refresh_pattern ^http:// 30 40% 20160
refresh_pattern ^ftp:// 30 50% 20160
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern (Release|Package(.gz)*)$ 0 20% 2880
refresh_pattern ^gopher:// 30 40% 20160
refresh_pattern . 1440 100% 1440 ignore-reload override-lastmod override-expire reload-into-ims

refresh_pattern -i exe$ 0 50% 999999
refresh_pattern -i zip$ 0 50% 999999
refresh_pattern -i iso$ 0 50% 999999
refresh_pattern -i flv$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i swf$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i cab$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i rar$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i deb$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i mp3$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i msi$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i rmvb$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i mp4$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i gif$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i png$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i jpg$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i tar$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i jar$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i war$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i dll$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i pdf$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i doc$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i pps$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i mpeg$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i mov$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i mpg$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i avi$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i 3gp$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i wmv$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i bmp$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i tif$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i amv$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i psf$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i gz$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims
refresh_pattern -i vdf$ 0 50% 999999 ignore-reload override-lastmod override-expire reload-into-ims



acl shoutcast rep_header X-HTTP09-First-Line ^ICY\s[0-9]
upgrade_http0.9 deny shoutcast

acl apache rep_header Server ^Apache
broken_vary_encoding allow apache

extension_methods REPORT MERGE MKACTIVITY CHECKOUT

visible_hostname fp.labs

icon_directory /usr/share/squid/icons

error_directory /usr/share/squid/errors/Portuguese

#dns_nameservers 201.10.128.3 201.10.120.3

hosts_file /etc/hosts

coredump_dir /var/spool/squid


MSN1====================================
passport.com
msn.com.br
sc.msn.com
www.msn.be
207.46.110.11
65.55.255.18
65.55.255.38
messenger.msn.com.br
http.msg.yahoo.com
nickname.msn.com.br
chat.msn.com
chat.msn.com.br
msgr.hotmail.com
gateway.messenger.hotmail.com
messenger/sqmserver.dll
messenger.live.com
contacts.msn.com
http1.msgr.hotmail.com
http2.msgr.hotmail.com
http3.msgr.hotmail.com
http4.msgr.hotmail.com
http5.msgr.hotmail.com
http6.msgr.hotmail.com
http7.msgr.hotmail.com
http8.msgr.hotmail.com
http9.msgr.hotmail.com
http10.msgr.hotmail.com
http11.msgr.hotmail.com
http12.msgr.hotmail.com
http13.msgr.hotmail.com
http14.msgr.hotmail.com
http15.msgr.hotmail.com
http16.msgr.hotmail.com
http17.msgr.hotmail.com
http18.msgr.hotmail.com
http19.msgr.hotmail.com
http20.msgr.hotmail.com
=============================================================
msn2

x-msn
==============================================================

ja utilizei uma lista de dominios do msn bem maior mais não adiantou nada, bloqueio de sites e outros funcionam normalmente, apesar de não estarem nesse conf, mais esse conf é praticamente o mesmo que uso em todos os lugares

caso alguem tenha alguma ideia agradeço a ajuda

0 0
  • Quote

    •   






    Patrocínio

    Site hospedado pelo provedor RedeHost.
    Linux banner

    Destaques

    Artigos

    Compartilhando a tela do Computador no Celular via Deskreen

    Como Configurar um Túnel SSH Reverso para Acessar Sua Máquina Local a Partir de uma Máquina Remota

    Configuração para desligamento automatizado de Computadores em um Ambiente Comercial

    O mínimo que você precisa saber sobre o terminal (parte 2)

    O mínimo que você precisa saber sobre o terminal (parte 1)

    Dicas

    Como renomear arquivos de letras maiúsculas para minúsculas

    Imprimindo no formato livreto no Linux

    Vim - incrementando números em substituição

    Efeito "livro" em arquivos PDF

    Como resolver o erro no CUPS: Unable to get list of printer drivers

    Tópicos

    Ubuntu não sai som (1)

    SysAdmin ou DevOps: Qual curso inicial pra essa área? (0)

    Melhores Práticas de Nomenclatura: Pastas, Arquivos e Código (3)

    Setxkb persistente (1)

    Preciso resolver um erro de DPKG (1)

    Top 10 do mês

    Scripts

    [Python] Automação de scan de vulnerabilidades

    [Python] Script para analise de superficie de ataque

    [Shell Script] Novo script para redimensionar, rotacionar, converter e espelhar arquivos de imagem

    [Shell Script] Iniciador de DOOM (DSDA-DOOM, Doom Retro ou Woof!)

    [Shell Script] Script para adicionar bordas às imagens de uma pasta

    A maior comunidade GNU/Linux da América Latina! Artigos, dicas, tutoriais, fórum, scripts e muito mais. Ideal para quem busca auto-ajuda.

    Site hospedado por: