Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
squid havp clamav
View unanswered posts
View posts from last 24 hours
View posts from last 7 days

 
Reply to topic    Gentoo Forums Forum Index Deutsches Forum (German) Deutsche Dokumentation
View previous topic :: View next topic  
Author Message
Marlo
Veteran
Veteran


Joined: 26 Jul 2003
Posts: 1148

PostPosted: Sat Mar 19, 2011 9:37 pm    Post subject: squid havp clamav Reply with quote

Hier ist etwas für Gentoo Nutzer, die wissen was sie suchen.
That is only for users, they know what they are looking for.

http://www.server-side.de/
http://wiki.squid-cache.org/FrontPage
http://www.perl-online.com/blog/archives/944
http://www.eicar.org/anti_virus_test_file.htm
http://www.google.com/search?hl=en&q=squid+havp+clamav


tux / # emerge squid havp clamav -pv wrote:

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild R ] app-antivirus/clamav-0.97 USE="bzip2 clamdtop iconv milter -ipv6 (-selinux)" 0 kB
[ebuild R ] net-proxy/squid-2.7.9 USE="epoll ldap logrotate pam snmp sqlite ssl -caps (-ipf-transparent) -kerberos (-kqueue) -mysql -nis (-pf-transparent) -postgres -samba -sasl (-selinux) -tproxy -zero-penalty-hit" 0 kB
[ebuild R ] net-proxy/havp-0.90-r1 USE="clamav ssl" 0 kB

Total: 3 packages (3 reinstalls), Size of downloads: 0 kB


Ich benutze squid stable = squid-2.7.9 | squid-3.xx ist nicht stable.
I only use squid stable = squid-2.7.9

tux / # cat /etc/havp/havp.config | grep "^[^#]" wrote:

USER havp
GROUP havp
DAEMON true
SERVERNUMBER 50
MAXSERVERS 200
ACCESSLOG /var/log/havp/access.log
ERRORLOG /var/log/havp/havp.log
LOGLEVEL 1
SCANTEMPFILE /var/tmp/havp/havp-XXXXXX
TEMPDIR /var/tmp/havp
PARENTPROXY localhost
PARENTPORT 3128
X_FORWARDED_FOR true
PORT 8000
TEMPLATEPATH /etc/havp/templates/en | or your language
FAILSCANERROR true
SCANIMAGES true
KEEPBACKTIME 5
ENABLECLAMLIB true
CLAMMAXRECURSION 8
ENABLECLAMD false
ENABLEFPROT false
ENABLEAVG false
ENABLEAVESERVER false
ENABLESOPHIE false
ENABLETROPHIE false
ENABLENOD32 false
ENABLEAVAST false
ENABLEARCAVIR false
ENABLEDRWEB false



tux / # cat /etc/squid/squid.conf | grep "^[^#]" wrote:

acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128 transparent
cache_peer localhost parent 8000 0 no-query no-digest no-netdb-exchange default
cache_peer_access localhost allow all
hierarchy_stoplist cgi-bin ?
access_log /var/log/squid/access.log squid
strip_query_terms off
buffered_logs on
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
via off
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
half_closed_clients off
shutdown_lifetime 1 seconds
icp_port 0
forwarded_for off
coredump_dir /var/cache/squid
pipeline_prefetch on


Füge diese Zeile in deine /etc/fstab ein.
Add this line to your /etc/fstab.

tux / # cat /etc/fstab | grep havp wrote:

tmpfs /var/tmp/havp tmpfs defaults,mand 0 0


Der Browsercache muss gelöscht werde!
Dont forget to delete the browser cache!

Im Browser localhost 8000 einstellen und squid testen. Wenn bei http://localhost/rums eine Squid-Fehlerseite erscheit ist es gut.
Danach havp testen mit http://www.eicar.org/anti_virus_test_file.htm

Configure your Browser to localhost 8000 and test squid. Perhaps with http://localhost/rums if you get a errorpage, squid works.
If so, point out http://www.eicar.org/anti_virus_test_file.htm and enjoy havp.

In der squid.conf sind diverse Optimierungen, ohne sie zu diskutieren.
Without any discussion, into squid.conf are various optimizations, mostly for speed.

have fun
ma
_________________
Test Adobe Flash Player
The Indian Shankar Drum Ganesh Machine


Last edited by Marlo on Wed Sep 07, 2011 5:16 pm; edited 1 time in total
Back to top
View user's profile Send private message
dertobi123
Retired Dev
Retired Dev


Joined: 19 Nov 2002
Posts: 2679
Location: Oberhausen, Germany

PostPosted: Sun Aug 14, 2011 9:04 pm    Post subject: Reply with quote

Und mit aktuellen Squid-3 Versionen geht dann sogar SSL-Scanning :)
_________________
Ganz frisch: Praxisbuch Nagios
Gentoo Linux - Die Metadistribution (2. Auflage)
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Deutsches Forum (German) Deutsche Dokumentation All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum