diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..cbb3a13 --- /dev/null +++ b/.gitignore @@ -0,0 +1,4 @@ +*.rpm +*.log +*spec-20* +*.tar.gz diff --git a/Makefile b/Makefile new file mode 100644 index 0000000..0b769b6 --- /dev/null +++ b/Makefile @@ -0,0 +1,21 @@ +# Makefile for source rpm: smeserver-webfilter +# $Id: Makefile,v 1.1 2022/05/24 07:28:25 jpp Exp $ +NAME := smeserver-webfilter +SPECFILE = $(firstword $(wildcard *.spec)) + +define find-makefile-common +for d in common ../common ../../common ; do if [ -f $$d/Makefile.common ] ; then if [ -f $$d/CVS/Root -a -w $$/Makefile.common ] ; then cd $$d ; cvs -Q update ; fi ; echo "$$d/Makefile.common" ; break ; fi ; done +endef + +MAKEFILE_COMMON := $(shell $(find-makefile-common)) + +ifeq ($(MAKEFILE_COMMON),) +# attept a checkout +define checkout-makefile-common +test -f CVS/Root && { cvs -Q -d $$(cat CVS/Root) checkout common && echo "common/Makefile.common" ; } || { echo "ERROR: I can't figure out how to checkout the 'common' module." ; exit -1 ; } >&2 +endef + +MAKEFILE_COMMON := $(shell $(checkout-makefile-common)) +endif + +include $(MAKEFILE_COMMON) diff --git a/README.md b/README.md index 67a7d57..176472b 100644 --- a/README.md +++ b/README.md @@ -1,3 +1,16 @@ -# smeserver-webfilter +# smeserver-webfilter -SMEServer Koozali developed git repo for smeserver-webfilter smecontribs \ No newline at end of file +SMEServer Koozali developed git repo for smeserver-webfilter smecontribs + +## Wiki +
https://wiki.koozali.org/WebFilter +
https://wiki.koozali.org/WebFilter/fr + +## Bugzilla +Show list of outstanding bugs: [here](https://bugs.koozali.org/buglist.cgi?component=smeserver-webfilter&product=SME%20Contribs&query_format=advanced&limit=0&bug_status=UNCONFIRMED&bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&bug_status=CONFIRMED) + +## Description + +
*This description has been generated by an LLM AI system and cannot be relied on to be fully correct.* +*Once it has been checked, then this comment will be deleted* +
diff --git a/additional/CHANGELOG.git b/additional/CHANGELOG.git new file mode 100644 index 0000000..9176e84 --- /dev/null +++ b/additional/CHANGELOG.git @@ -0,0 +1,438 @@ +commit f765c91ecd3af5e838b0a3a11af302d17d301e21 +Author: Daniel Berteaud +Date: Thu Nov 19 16:28:55 2015 +0100 + + Add pt-br localization (thanks to Jáder Marasca) + +commit 3ff42533f5200e16fc814094fd5b1fe7c42670b9 +Author: Daniel Berteaud +Date: Fri May 15 17:45:41 2015 +0200 + + Spec file update + +commit 4b0e6d7a191f441821a982404c3a46667b90a825 +Author: Daniel Berteaud +Date: Fri May 15 17:14:02 2015 +0200 + + Add Danish translation (by Jan B Thygesen) + +commit 83fcefb6d6c0528a58fe013ce197a96f67a67157 +Author: Daniel Berteaud +Date: Wed Jun 25 15:30:27 2014 +0200 + + Spec file update + +commit 8d5e6d24903b942125fa8e3c04926f04d28925b6 +Author: Daniel Berteaud +Date: Wed Jun 25 15:27:41 2014 +0200 + + Pre-create log files + +commit 3eb9fd0a2e4f24b7f6d9bc775584b1212b51793a +Author: Daniel Berteaud +Date: Wed Jun 25 15:22:06 2014 +0200 + + Define HOME so the daily cleanup works on EL6 + +commit ec3df04a57cecd5ea0713e230cf1fc4a0110df3b +Author: Daniel Berteaud +Date: Tue Nov 12 14:12:41 2013 +0100 + + update spec file + +commit c2a95cff667fe039e3c191ed7997925c89c2cfb7 +Author: Daniel Berteaud +Date: Tue Nov 12 14:10:57 2013 +0100 + + Adapt perl lib path for EL6 + +commit ff6bfd88ae783762f0641c26871bd8d1ca680e03 +Author: Daniel Berteaud +Date: Fri Sep 6 16:06:33 2013 +0200 + + update spec file + +commit 1cc3b47a6aede90da14e926b1d793c19fec7a908 +Author: Daniel Berteaud +Date: Fri Sep 6 15:56:42 2013 +0200 + + Correctly handle more than two unrestricted IP or network + +commit 0c5ac607b72887bf1f8218c720d786504bc38c02 +Author: Daniel Berteaud +Date: Wed Jan 23 10:31:34 2013 +0100 + + update spec file + +commit eff4e670174ab1a9391a820419ad4fd770c0ee16 +Author: Daniel Berteaud +Date: Wed Jan 23 10:29:56 2013 +0100 + + Add possibility to log on a remote MySQL server + +commit cf41aa916993001812872b0f0d6674285d379764 +Author: Daniel Berteaud +Date: Wed Oct 31 15:03:44 2012 +0100 + + Update spec file + +commit 13450a711488332e7d5d527c8e9367abf910a0b0 +Author: Daniel Berteaud +Date: Wed Oct 24 18:53:04 2012 +0200 + + Don't rotate tables, just purge old entries + +commit 1b27d300888c20dec4483c528b87fcc67dd2b377 +Author: Daniel Berteaud +Date: Wed Oct 24 12:05:21 2012 +0200 + + Update spec file + +commit bc8f445f61b1bd6c911471a7b4a6562827005d25 +Author: Daniel Berteaud +Date: Wed Oct 24 12:04:20 2012 +0200 + + Handle unsupported request method message in squid logs + +commit 922f2eb8e94be3f0666824ff4ff7c79dcb29c02a +Author: Daniel Berteaud +Date: Wed Oct 24 09:55:51 2012 +0200 + + Update spec file + +commit 1582092fc8a38e3a10a4fbf98eaaf270661082f6 +Author: Daniel Berteaud +Date: Wed Oct 24 09:40:28 2012 +0200 + + Add it locale (thanks to Nicola Tiana ) + +commit 7e39d13b1e203ddef867532d8bc3410210f55164 +Author: Daniel Berteaud +Date: Mon Oct 22 19:12:39 2012 +0200 + + Update spec file + +commit 36118ffd45176134625b73c588ce24270fd77420 +Author: Daniel Berteaud +Date: Mon Oct 22 19:03:16 2012 +0200 + + Save de lexicon file as UTF-8 + +commit 2a6d71fa53088616beb2ae95b0aad57cc02b6ea9 +Merge: 9c92240 18e494d +Author: Daniel Berteaud +Date: Mon Oct 22 18:27:22 2012 +0200 + + Merge branch 'master' of main:/home/e-smith/files/shares/dev/files/smeserver-webfilter + +commit 9c9224031dc7582c6d8092c0b36424c92c1a4ec1 +Author: Daniel Berteaud +Date: Mon Oct 22 18:16:35 2012 +0200 + + Add de locale (Thanks to Daniel Schiffer ) + +commit 18e494df4a10695d98af86d84eb9c82181f9dbfc +Author: Daniel Berteaud +Date: Fri Oct 19 17:52:15 2012 +0200 + + Update spec file + +commit 8b9ee5129e8c979f3e29cab2b6147d6df8bf3da8 +Author: Daniel Berteaud +Date: Fri Oct 19 17:02:37 2012 +0200 + + Properly escape domain names + +commit 83237122d03c749dab8d5ebae37445cb1e889e32 +Author: Daniel Berteaud +Date: Fri Oct 19 17:00:33 2012 +0200 + + Fix processing of CONNECT blocked by squidGuard + +commit 81ab643abcb286f9ee3b6c34534fe2eaf2a6b8d3 +Author: Daniel Berteaud +Date: Fri Oct 19 12:45:48 2012 +0200 + + Update spec file + +commit e2a0579907daca888b140b790eb1fb3a83c24b3e +Author: Daniel Berteaud +Date: Fri Oct 19 12:45:03 2012 +0200 + + Use larger varchar for URL and domain names + +commit 07c198493a6ca2736de19dbbaacf46e960b32b5d +Author: Daniel Berteaud +Date: Thu Oct 18 22:49:44 2012 +0200 + + Update spec file + +commit 0b4f245f61ceee0ae7c40a7b665efb2cb80598b1 +Author: Daniel Berteaud +Date: Thu Oct 18 22:04:36 2012 +0200 + + Add missing dbuser option to squid-db-logd script + +commit b1b3ba70c6776c41987fad3c290369615e24bdea +Author: Daniel Berteaud +Date: Thu Oct 18 22:03:16 2012 +0200 + + Log stderr to stdout in run script + +commit fcbba0f55d3d7481b66d791e149d3775c6d24e3b +Author: Daniel Berteaud +Date: Thu Oct 18 21:25:04 2012 +0200 + + Optimize INSERT by preparing once execute many times + +commit ce0c7ec3b25c771a6b34ceaecb4401428c9f4183 +Author: Daniel Berteaud +Date: Wed Oct 17 12:16:32 2012 +0200 + + Update spec file + +commit 8c4fe7bf9989e74594d1020026070a47cb4a88d8 +Author: Daniel Berteaud +Date: Wed Oct 17 10:48:49 2012 +0200 + + Fix processing of CONNECT lines + +commit bcf26f204e2fd24ed3fa466cd29b49eb3b83fd7a +Author: Daniel Berteaud +Date: Sun Oct 14 23:00:46 2012 +0200 + + Mise à jour du ichier spec + +commit 385fff0567e22b1a4e86d11b7747a782bf8c21b7 +Author: Daniel Berteaud +Date: Sun Oct 14 22:59:54 2012 +0200 + + Ignorer les requêtes de stats de squidclient + +commit bde87b05efa57ac53a4bc744c299005dca77a1b3 +Author: Daniel Berteaud +Date: Fri Oct 12 14:24:57 2012 +0200 + + Mise à jour du fichier spec + +commit 2147ede5b174687368fe3a6306fcdf151762081e +Author: Daniel Berteaud +Date: Tue Oct 9 13:51:40 2012 +0200 + + Ajout d'une colonne indépendante pour la domaine (utile pour les stats) + +commit 98b39de52c4c2b09e688e48f25376583ac56b0a3 +Author: Daniel Berteaud +Date: Tue Oct 9 13:17:37 2012 +0200 + + fonction mysql_escape + +commit 1763c66b7c47b5f7ff2b49006f5a46640181a90f +Author: Daniel Berteaud +Date: Mon Oct 8 21:04:08 2012 +0200 + + Ajout d'un script pour la rotation/compression des logs MySQL + +commit 65a8f571794c8fede13ae52f3a85c9afc7d0f45e +Author: Daniel Berteaud +Date: Mon Oct 8 20:55:32 2012 +0200 + + Chomp hostname + +commit 9d339e6557214f10ddcc8afefcd62d8523f96cbc +Author: Daniel Berteaud +Date: Mon Oct 8 16:02:25 2012 +0200 + + Ajustement des tailles de données dans la base squid_log + +commit 6c15f56964b1a25f61fbeb81ebd410579d014ffb +Author: Daniel Berteaud +Date: Mon Oct 8 15:56:23 2012 +0200 + + Échapement des entrées pour MySQL + +commit 9cc388baaad15ec758b767668f7d008fe01984bb +Author: Daniel Berteaud +Date: Mon Oct 8 15:54:10 2012 +0200 + + Corrige l'arrêt du process si squid n'est pas activé + +commit 7526d511affce35b1c7dbcbfb6ebf6e99713022a +Author: Daniel Berteaud +Date: Mon Oct 8 15:53:51 2012 +0200 + + Lance le processus en tant qu'utilisateur squid (pas besoin des droits root) + +commit 4deffc7f2f0bd034c944d8e6674231e0a0b1cc30 +Author: Daniel Berteaud +Date: Sun Oct 7 19:50:07 2012 +0200 + + Ajout du démon Squid Database Logging Daemon + +commit 4ec65fd89617edfa1c9eff6bb242910400a55c29 +Author: Daniel Berteaud +Date: Sun Oct 7 17:56:28 2012 +0200 + + Log toutes les catégories dans un fichier unique + +commit e1f8cd42181b72df622eb7e67d03d4ebfebe8d65 +Author: Daniel Berteaud +Date: Sun Oct 7 16:40:21 2012 +0200 + + Mise à jour du fichier spec + +commit 89285d4015ed7c8acb36c196912b6aad1af0dc66 +Author: Daniel Berteaud +Date: Sun Oct 7 16:39:34 2012 +0200 + + Maquer les catégories désactivées du panel + +commit 7fd3bba11393ee82430b13d63478ccbfc78649bc +Author: Daniel Berteaud +Date: Tue Sep 11 10:44:43 2012 +0200 + + Mise à jour du fichier spec + +commit a36b59ba9811a003d9b719272542349116fb5c9b +Author: Daniel Berteaud +Date: Tue Sep 11 10:30:17 2012 +0200 + + Support whitelist pour squidclamav + +commit e7a84ee87c285d794d3d7fef85450b3ba65e065d +Author: Daniel Berteaud +Date: Mon Aug 27 17:48:16 2012 +0200 + + Mise à jour du fichier spec + +commit b9747662cbfaeab0560abd64c80fdc1686e7c0dd +Author: Daniel Berteaud +Date: Mon Aug 27 17:47:36 2012 +0200 + + Correction de la locale FR (label filtrage av) + +commit 43fc6641a40104a713ea4a230cea3ea718ceeca4 +Author: Daniel Berteaud +Date: Mon Aug 27 17:46:38 2012 +0200 + + Mise à jour du fichier spec + +commit f41d426fdbf49b8226030eb2ccf4b651ac524eac +Author: Daniel Berteaud +Date: Fri Jul 6 11:04:55 2012 +0200 + + Plus de process de filtrage + +commit db41f0a8b853dac68312c455ec890de477be4fb8 +Author: Daniel Berteaud +Date: Wed Apr 18 13:25:13 2012 +0200 + + update spec file + +commit 8a021e53e0aba986f0ca00adf476cc2d38efd023 +Author: Daniel Berteaud +Date: Wed Apr 18 13:24:34 2012 +0200 + + Log cron job to /dev/null + +commit 03b045bdd53913cdf0e2384419539efa171d2e6b +Author: Daniel Berteaud +Date: Wed Apr 18 13:23:42 2012 +0200 + + quiet rsync command + +commit e68d0c05c8361d0322be6e28bf2aed238a72a745 +Author: Daniel Berteaud +Date: Tue Apr 17 10:52:25 2012 +0200 + + Add logrotate file for squidclamav + +commit 8ba0d1bdf35e29139739696c603d20569b9598a1 +Author: Daniel Berteaud +Date: Tue Apr 17 10:50:30 2012 +0200 + + Fix templates and status report + +commit e8ddbdb1400875304a5c36f2984e8916c17805d2 +Author: Daniel Berteaud +Date: Tue Apr 17 10:03:35 2012 +0200 + + Initial squidclamav support + +commit a5046b92fd935bb00708cea1c1e697d41fb68ef4 +Author: Daniel Berteaud +Date: Tue Apr 17 09:41:18 2012 +0200 + + Remove havp + +commit c924f6cbd1e8d3c609d36beeed718f22e8626fce +Author: Daniel Berteaud +Date: Mon Apr 16 19:33:53 2012 +0200 + + umount scan image when shuting down + +commit 44b4a8e8163f57ece9a7d61781222ddc1ca82999 +Author: Daniel Berteaud +Date: Mon Apr 16 19:28:05 2012 +0200 + + Fix dd command + +commit d53cc83183836698fbb744820a1237541d3e0ad9 +Author: Daniel Berteaud +Date: Mon Apr 16 19:00:11 2012 +0200 + + make havp supervised again + +commit e6162b3311ac8d80c28827608fae71e5b447c9c3 +Author: Daniel Berteaud +Date: Mon Apr 16 17:40:05 2012 +0200 + + put havp in front of squid + +commit dd34d2a331903b45529a6ae9eacfbf0d69bfd687 +Author: Daniel Berteaud +Date: Mon Apr 16 16:20:07 2012 +0200 + + Allow to use a external parent proxy + +commit 39d5ecf3a99cfbc95df4b039a26b43330795909d +Author: Daniel Berteaud +Date: Mon Apr 16 15:31:24 2012 +0200 + + daemonize havp + +commit 348d3d622b0e5c015ebb36bce49bf0ed5f00684f +Author: Daniel Berteaud +Date: Mon Apr 16 15:02:11 2012 +0200 + + Syntax error in action script + +commit a36f746f0b123a4c3577627702fa7e320d3c5b2f +Author: Daniel Berteaud +Date: Mon Apr 16 14:51:53 2012 +0200 + + Simplified panel with merged domains and urls wbl + +commit 01b37191386d99ebc67f8d0f7f567f3a2650a212 +Author: Daniel Berteaud +Date: Mon Apr 16 10:12:59 2012 +0200 + + initial havp support + +commit 814b0d48fa1dff56f892256961e73cce3fe8b552 +Author: Daniel Berteaud +Date: Tue Apr 3 18:34:25 2012 +0200 + + Fix log files ownership + +commit 2d343286e62ef289f219e70fc02a5c095cbcb3b5 +Author: Daniel Berteaud +Date: Tue Mar 27 11:23:17 2012 +0200 + + add .log suffix to log files + +commit 3e658313bc64496a3f6ea436206905e7746a735c +Author: Daniel Berteaud +Date: Tue Mar 27 10:32:36 2012 +0200 + + Initial commit diff --git a/additional/smeserver-webfilter.spec b/additional/smeserver-webfilter.spec new file mode 100644 index 0000000..f2871a1 --- /dev/null +++ b/additional/smeserver-webfilter.spec @@ -0,0 +1,154 @@ +%define version 0.2.15 +%define release 1 +%define name smeserver-webfilter + + +Summary: web filtering proxy for SME Server +Name: %{name} +Version: %{version} +Release: %{release}%{?dist} +Epoch: 9 +License: GPL +Group: Networking/Daemons +Source: %{name}-%{version}.tar.gz + +BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot +BuildArchitectures: noarch +BuildRequires: e-smith-devtools + +Requires: squidGuard >= 1.4 +Requires: squidclamav +Requires: perl(File::Tail) +Requires: perl(Getopt::Long) +Requires: perl(DBI) +Requires: perl(URI) + +Obsoletes: smeserver-squidguard +Provides: smeserver-squidguard + +%description +Web proxy filtering based on squidguard and squidclamav + + +%changelog +* Fri May 15 2015 Daniel Berteaud 0.2.15-1 +- Add Danish localization (by Jan B Thygesen) + +* Wed Jun 25 2014 Daniel Berteaud 0.2.14-1 +- fix cleanup cronjob on EL6 +- Pre-create log files to prevent warnings + +* Tue Nov 12 2013 Daniel Berteaud 0.2.13-1 +- New branch for SME9 + +* Fri Sep 6 2013 Daniel Berteaud 0.2.12-1 +- Correctly handle more than two unrestricted IP or network + +* Wed Jan 23 2013 Daniel Berteaud 0.2.11-1 +- It's now possible to log on a remote MySQL server + +* Wed Oct 24 2012 Daniel Berteaud 0.2.10-1 +- Don't rotate tables, just purge old entries + +* Wed Oct 24 2012 Daniel Berteaud 0.2.9-1 +- Handle error:unsupported-request-method in squid logs + +* Wed Oct 24 2012 Daniel Berteaud 0.2.8-1 +- Add it locale for the panel, thanks to Nicola Tiana + +* Mon Oct 22 2012 Daniel Berteaud 0.2.7-1 +- Use UTF-8 for de locale file + +* Mon Oct 22 2012 Daniel Berteaud 0.2.6-1 +- Add de locale to the panel, thanks to Daniel Schiffer + +* Fri Oct 19 2012 Daniel Berteaud 0.2.5-1 +- Fix processing of denied CONNECT in squidGuard logs +- Properly escape domain names + +* Fri Oct 19 2012 Daniel Berteaud 0.2.4-1 +- Use larger varchar for URL and domain names + +* Thu Oct 18 2012 Daniel Berteaud 0.2.3-1 +- Optimize database inserts +- Log stderr to stdout in squid-db-logd run script +- Add missing dbuser option in squid-db-logd + +* Wed Oct 17 2012 Daniel Berteaud 0.2.2-1 +- Fix processing CONNECT lines + +* Sun Oct 14 2012 Daniel Berteaud 0.2.1-1 +- Ignore stats requests from squidclient + +* Sun Oct 7 2012 Daniel Berteaud 0.2.0-1 +- Include Squid Database Logging Daemon (squid-db-logd) + +* Sun Oct 7 2012 Daniel Berteaud 0.1.4-1 +- Fix hidding disabled caegories + +* Tue Sep 11 2012 Daniel Berteaud 0.1.3-1 +- Add whitelists to squidclamav + +* Mon Aug 27 2012 Daniel Berteaud 0.1.2-1 +- Fix en-us locale (label AV Filtering) + +* Fri Jul 6 2012 Daniel Berteaud 0.1.1-1 +- Spawn more redirect children + +* Mon Apr 16 2012 Daniel Berteaud 0.1.0-1 +- Rename to smeserver-webfilter +- Add AV filtering with squidclamav +- Simplified panel +- Log cron job to dev null +- Use quiet rsync arg + +* Tue Apr 03 2012 Daniel Berteaud 0.1.2-1 +- Fix ownership of log files + +* Tue Mar 27 2012 Daniel Berteaud 0.1.1-1 +- Add .log suffix to log files + +* Tue Mar 27 2012 Daniel Berteaud 0.1.0-1 +- Move to git + +* Tue Feb 21 2012 Daniel Berteaud 0.1-1 +- initial release + +%prep +%setup -q -n %{name}-%{version} + +%build +%{__mkdir_p} root/var/log/squid-db-logd +perl createlinks + +%install +/bin/rm -rf $RPM_BUILD_ROOT +(cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT) +/bin/rm -f %{name}-%{version}-filelist +/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ + --dir /var/squidGuard/blacklists 'attr(0750,squid,squid)' \ + --dir /var/log/squid-db-logd 'attr(0770,smelog,smelog)' \ + --file /usr/bin/squid-db-logd 'attr(0755,root,root)' \ + --file /var/service/squid-db-logd/run 'attr(0755,root,root)' \ + --file /var/service/squid-db-logd/log/run 'attr(0755,root,root)' \ + --file /var/squidGuard/blacklists/black/domains 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/black/urls 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/white/domains 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/white/urls 'attr(0640,squid,squid) %config(noreplace)' \ + --file /etc/cron.daily/squid-db-cleanup 'attr(0755,root,root)' \ + --file /var/log/squidGuard/deny.log 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/log/squidGuard/white.log 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/log/squidGuard/squidGuard.log 'attr(0640,squid,squid) %config(noreplace)' \ + > %{name}-%{version}-filelist + +echo "%doc CHANGELOG.git" >> %{name}-%{version}-filelist +echo "%doc squid_log.sql" >> %{name}-%{version}-filelist +%files -f %{name}-%{version}-filelist +%defattr(-,root,root) + +%clean +rm -rf $RPM_BUILD_ROOT + +%post +%preun + diff --git a/additional/squid_log.sql b/additional/squid_log.sql new file mode 100644 index 0000000..2334927 --- /dev/null +++ b/additional/squid_log.sql @@ -0,0 +1,44 @@ +-- Table to store squid access logs + +CREATE TABLE access_log ( + id INTEGER NOT NULL AUTO_INCREMENT PRIMARY KEY, + proxy_host VARCHAR(30), + timestamp DECIMAL(15,3), + date_day DATE, -- set by trigger + date_time TIME, -- set by trigger + response_time INTEGER, + client_ip CHAR(15), + squid_status VARCHAR(30), + http_status VARCHAR(10), + reply_size INTEGER, + request_method VARCHAR(15), + url VARCHAR(600), + domain VARCHAR(60), + username VARCHAR(30), + squid_connect VARCHAR(20), + server_ip CHAR(15), + mime_type VARCHAR(50) +) ENGINE=MYISAM; + +-- trigger that extracts the date value from the timestamp column +-- and stores it in the date_day and date_time columns +-- this allows fast calculation of per-day aggregate values +DELIMITER // +CREATE TRIGGER extract_date_bi BEFORE INSERT ON access_log FOR EACH ROW +BEGIN + SET NEW.date_day = DATE(FROM_UNIXTIME(NEW.timestamp)); + SET NEW.date_time = TIME(FROM_UNIXTIME(NEW.timestamp)); +END; // + +CREATE TABLE deny_log ( + id INTEGER NOT NULL AUTO_INCREMENT PRIMARY KEY, + proxy_host VARCHAR(30), + date_day DATE, + date_time TIME, + category VARCHAR(40), + client_ip CHAR(15), + url VARCHAR(600), + domain VARCHAR(60), + username VARCHAR(30) +) ENGINE=MYISAM; + diff --git a/contriborbase b/contriborbase new file mode 100644 index 0000000..9b7fd51 --- /dev/null +++ b/contriborbase @@ -0,0 +1 @@ +contribs10 diff --git a/createlinks b/createlinks new file mode 100644 index 0000000..399cfd5 --- /dev/null +++ b/createlinks @@ -0,0 +1,53 @@ +#!/usr/bin/perl -w + +use esmith::Build::CreateLinks qw(:all); + +my $pkg= "smeserver-webfilter"; +my $update_event = "${pkg}-update"; + + +foreach my $event (qw/bootstrap-console-save http-proxy-update smeserver-webfilter-update /){ + templates2events("/etc/squid/squid.conf", $event); + templates2events("/etc/squid/squidGuard.conf", $event); + templates2events("/usr/share/squidGuard/conf.txt", $event); + templates2events("/etc/cron.daily/squidGuard", $event); + templates2events("/etc/logrotate.d/squidGuard", $event); + templates2events("/etc/squidclamav.conf", $event); + templates2events("/etc/e-smith/sql/init/squiddblogd", $event); +}; + +event_services($update_event, qw( + squidGuard restart + httpd-e-smith restart + transparent-proxying restart +)); + +# squid-db-logd restart + + +safe_symlink("restart", "root/etc/e-smith/events/http-proxy-update/services2adjust/mysql.init"); +safe_symlink("restart", "root/etc/e-smith/events/http-proxy-update/services2adjust/squid-db-logd"); + +event_link("squidguard-update-databases", 'http-proxy-update', "10"); + +safe_symlink("/etc/e-smith/templates-default/template-begin-shell", "root/etc/e-smith/templates/etc/cron.daily/squidGuard/template-begin"); + +panel_link("webfilter", "manager"); + +safe_touch('root/var/squidGuard/blacklists/black/domains'); +safe_touch('root/var/squidGuard/blacklists/black/urls'); +safe_touch('root/var/squidGuard/blacklists/white/domains'); +safe_touch('root/var/squidGuard/blacklists/white/urls'); +safe_touch('root/var/service/squid-db-logd/down'); +safe_touch('root/var/log/squidGuard/deny.log'); +safe_touch('root/var/log/squidGuard/white.log'); +safe_touch('root/var/log/squidGuard/squidGuard.log'); + +#safe_symlink("../daemontools" , 'root/etc/rc.d/init.d/supervise/squid-db-logd'); +#safe_symlink("/var/service/squid-db-logd" , 'root/service/squid-db-logd'); + +#service_link_enhanced("squid-db-logd", "S98", "7"); +#service_link_enhanced("squid-db-logd", "K15", "6"); +#service_link_enhanced("squid-db-logd", "K35", "0"); +#service_link_enhanced("squid-db-logd", "K35", "1"); + diff --git a/root/etc/cron.daily/squid-db-cleanup b/root/etc/cron.daily/squid-db-cleanup new file mode 100644 index 0000000..22fb1c5 --- /dev/null +++ b/root/etc/cron.daily/squid-db-cleanup @@ -0,0 +1,22 @@ +#!/bin/bash + +HOME=/root + +LOG=$(/sbin/e-smith/db configuration getprop squid-db-logd status || echo 'disabled') + +if [ "$LOG" != "enabled" ]; then + exit 0 +fi + +HOST=$(/sbin/e-smith/db configuration getprop squid-db-logd DbHost || echo 'localhost') + +if [ "$HOST" != "localhost" ]; then + exit 0 +fi + +RETENTION=$(/sbin/e-smith/db configuration getprop squid-db-logd Retention || echo 370) +DB=$(/sbin/e-smith/db configuration getprop squid-db-logd DbName || echo squid_log) + +echo "delete from access_log where date_dayget('squid-db-logd') + || $DB->new_record('squid-db-logd', {type => 'service'}); + my $pw = $rec->prop('DbPassword'); + if (not $pw or length($pw) < 57){ + use MIME::Base64 qw(encode_base64); + + $pw = "not set due to error"; + if ( open( RANDOM, "/dev/urandom" ) ){ + my $buf; + # 57 bytes is a full line of Base64 coding, and contains + # 456 bits of randomness - given a perfectly random /dev/random + if ( read( RANDOM, $buf, 57 ) != 57 ){ + warn("Short read from /dev/random: $!"); + } + else{ + $pw = encode_base64($buf); + chomp $pw; + } + close RANDOM; + } + else{ + warn "Could not open /dev/urandom: $!"; + } + $rec->set_prop('DbPassword', $pw); + } +} diff --git a/root/etc/e-smith/events/actions/squidguard-update-databases b/root/etc/e-smith/events/actions/squidguard-update-databases new file mode 100644 index 0000000..ba1fa49 --- /dev/null +++ b/root/etc/e-smith/events/actions/squidguard-update-databases @@ -0,0 +1,84 @@ +#!/bin/bash +#---------------------------------------------------------------------- +# copyright (C) 2011 Firewall Services +# daniel@firewall-services.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +# +#---------------------------------------------------------------------- + +# This function check if the given category is disabled +function cat_is_disabled(){ + cat=$1 + local ret=0 + for D in $(echo $DISABLED_CAT | sed -e 's/[;,]/ /g'); do + if [ "$D" == "$cat" ]; then + local ret=1 + break + fi + done + echo $ret +} + +/bin/mkdir -p /var/squidGuard/blacklists/{black,white} + +# Be sure those files exists +for F in "black/domains" "black/urls" "white/domains" "white/urls"; do + if [ \! -e /var/squidGuard/blacklists/$F ]; then + touch /var/squidGuard/blacklists/$F + fi +done + +UPDATE=$(/sbin/e-smith/db configuration getprop squidguard AutoUpdate || echo enabled) +DISABLED_CAT=$(/sbin/e-smith/db configuration getprop squidguard DisabledCategories) + +if [ "$UPDATE" == "enabled" ]; then + # Update database from the University of Toulouse + /usr/bin/rsync -rzPq ftp.univ-tlse1.fr::blacklist/dest/ /var/squidGuard/blacklists/ +fi + +# Rebuild database only if something changed +for CAT in $(ls /var/squidGuard/blacklists/); do + if [ "$(cat_is_disabled $CAT)" == "1" ]; then + echo "$CAT is disabled, skiping" + continue + fi + for TYPE in domains urls; do + if [ -f /var/squidGuard/blacklists/$CAT/$TYPE ]; then + OLDMD=$(cat /var/squidGuard/blacklists/$CAT/$TYPE.md5 2>/dev/null) + NEWMD=$(md5sum /var/squidGuard/blacklists/$CAT/$TYPE | cut -d' ' -f1) + if [ "$OLDMD" != "$NEWMD" ]; then + echo "$CAT/$TYPE has changed, database needs to be updated" + rm -f /var/squidGuard/blacklists/$CAT/$TYPE.db + /usr/bin/squidGuard -P -C $CAT/$TYPE + if [ -e /var/squidGuard/blacklists/$CAT/$TYPE.db ]; then + md5sum /var/squidGuard/blacklists/$CAT/$TYPE | cut -d' ' -f1 > \ + /var/squidGuard/blacklists/$CAT/$TYPE.md5 + fi + else + echo "$CAT/$TYPE hasn't changed, no database update needed" + fi + fi + done +done + +chown -R squid:squid /var/squidGuard/blacklists +chown -R squid:squid /var/log/squidGuard/* +chmod 640 /var/log/squidGuard/* + +# Reload squid configuration +/usr/sbin/squid -k reconfigure + + diff --git a/root/etc/e-smith/locale/bg/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/bg/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..f1626ae --- /dev/null +++ b/root/etc/e-smith/locale/bg/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Черен списък + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Бял списък + + diff --git a/root/etc/e-smith/locale/da/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/da/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..a2888c5 --- /dev/null +++ b/root/etc/e-smith/locale/da/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web filter + + + FORM_TITLE + Web filtrering konfiguration + + + PAGE_DESCRIPTION + Denne side lader dig blokere nogle hjemmeside kategorier + + + DISABLED + Deaktiveret + + + ENABLED + Aktiveret + + + DESC_URL_FILTER_STATUS + Vil du aktivere URL filtrering og blokere valgte hjemmeside kategorier ? + + + LABEL_URL_FILTER_STATUS + URL filter + + + DESC_AV_FILTER_STATUS + du at aktivere antivirus filtrering og blokere download af inficerede filer ? + + + LABEL_AV_FILTER_STATUS + AV filter + + + DESC_BLOCKED_CATEGORIES + Du kan kontrollere hjemmeside kategorier, du vil blokere + + + BLOCKED_OR_NOT + Blokeret ? + + + CATEGORY + Kategori + + + BLOCKED_CATEGORIES + Blokerede kategorier + + + NOT_A_VALID_IP_LIST + Dette felt indeholder et eller flere poster + + + adult + Voksen websteder lige fra erotisk til hardcore pornografi + + + agressif + racistisk, antisemitisk, tilskyndelse til had websteder + + + arjel + Online betting websteder certificeret af ARJEL + + + astrology + Astrologi relaterede websteder + + + audio-video + Audio og video websteder + + + bank + Online netbanker + + + blog + Blog hosting websteder + + + celebrity + "People" nyheds websteder + + + chat + Online chating websteder + + + child + Websteder godkendt for + + + cleaning + Websteder for at rense og opdatere computere + + + cooking + Websteder for madlavning + + + dangerous_material + Websteder, der beskriver, hvordan man skaber farlige materialer (eksplosive, gift osv.) + + + dating + Dating hjemmesider + + + drogue + Narkotika relaterede hjemmesider + + + filehosting + Fil hosting hjemmesider (video, billeder, lyd) + + + financial + Finansielle websteder + + + forums + Fora + + + gambling + Online spille websteder, kasinoer, etc. + + + games + Online spil eller spil distribution + + + hacking + Hacking og computer angreb websteder + + + jobsearch + Jobs gning + + + liste_bu + uddannelsesm ssige websteder for "univ-tlse1.fr" + + + malware + Websteder der installerer malware + + + manga + Manga og tegneserier relaterede hjemmesider + + + marketingware + Meget specielle marketing websteder + + + mobile-phone + Telefon relaterede websteder (ring, etc.) + + + phishing + Phishing, bank og lignende websteder + + + press + Nyheds websteder + + + publicite + Annonce + + + radio + Internet radiostationer + + + reaffected + Websteder, der har \'e6ndret ejerskab og dermed indhold + + + redirector + Filtrerende omdirigerings websteder + + + remote-control + Fjernbetjening websteder + + + sect + Sekter + + + sexual_education + websteder der taler om seksualundervisning og kan vises som pornografisk + + + shopping + Shopping websteder + + + social_networks + Sociale netverk + + + sports + Sport + + + strict_redirector + Ligesom omdirigering, men omfatter klassiske gemaskiner + + + strong_redirector + Ligesom streng omdirigering, men for Google og andre, kun blokere nogle geord + + + tricheur + Websteder, der forklarer, hvordan du snyde eksamen + + + warez + Websteder for forfalskede programmer + + + webmail + Webmails (hotmail, gmail osv.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Ufiltrerede IP-adresser + + + DESC_BLACK + Du kan indtaste her en liste over blokerede dom\'e6nenavne eller webadresser.]]> + + + LABEL_BLACK + Sortlistet + + + DESC_WHITE + Indtast her et dom\'e6nenavne eller webadresse lister, som vil blive tilladt + + + LABEL_WHITE + Hvidlistet + + diff --git a/root/etc/e-smith/locale/de/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/de/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..15da809 --- /dev/null +++ b/root/etc/e-smith/locale/de/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Internetfilter + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + Hier können sie Webseiten nach Kategorien filtern + + + DISABLED + Deaktiviert + + + ENABLED + Aktiviert + + + DESC_URL_FILTER_STATUS + Wollen sie den Internetfilter aktivieren? + + + LABEL_URL_FILTER_STATUS + URL Filter + + + DESC_AV_FILTER_STATUS + Wollen sie den Antivirus-Gateway aktivieren? + + + LABEL_AV_FILTER_STATUS + Antivirus Filter + + + DESC_BLOCKED_CATEGORIES + Aktivieren sie die Webseiten-Kategorien, die sie blockieren möchten. + + + BLOCKED_OR_NOT + Aktiviert + + + CATEGORY + Kategorie + + + BLOCKED_CATEGORIES + Aktivierte Kategorien + + + NOT_A_VALID_IP_LIST + Dieses Feld enthält einen oder mehrere Einträge + + + adult + Erotikseiten, Pornographie + + + agressif + Rassistische und antisemitische Seiten + + + arjel + Glücksspielseiten von ARJEL nicht zertifiziert + + + astrology + Astrologie + + + audio-video + Audio- und Videose + + + bank + Online Banking Seiten + + + blog + Internetblogs + + + celebrity + Prominenten Nachrichten + + + chat + Online Chats + + + child + Für Kinder geeignete Seiten + + + cleaning + Updateseiten + + + cooking + Kochrezepte + + + dangerous_material + Anleitungen zum Bombenbau oder zur Giftmischung + + + dating + Partnerbörsen + + + drogue + Drogen + + + filehosting + Datei-Hostingseiten (Videos, Bilder, Musik) + + + financial + Finanzen + + + forums + Internetforen + + + gambling + Online Spieleseiten + + + games + Onlinespiele und -anbieter + + + hacking + Hacker Webseiten + + + jobsearch + Stellenbörsen + + + liste_bu + Bildungsseiten für "univ-tlse1.fr" + + + malware + Mit Malware infizierte Seiten + + + manga + Manga- und Comicseiten + + + marketingware + Marketing Webseiten + + + mobile-phone + Angebote für Handys (Klingeltöne etc.) + + + phishing + Phishingseiten + + + press + Nachrichten + + + publicite + Anzeigenmarkt + + + radio + Internetradios + + + reaffected + Webseiten, die Eigentum und somit Inhalte geändert haben + + + redirector + Seiten, die Internetfilter umgehen + + + remote-control + Seiten zur Fernbedienung + + + sect + Sekten + + + sexual_education + Seiten mit sexuellen Diskussionen und Inhalten + + + shopping + Shopping-Webseiten + + + social_networks + Soziale Netzwerke + + + sports + Sportseiten + + + strict_redirector + Seiten, die Internetfilter umgehen und weitere Suchmaschinen + + + strong_redirector + Seiten, die Internetfilter umgehen und weitere Suchmaschinen, einige Schlüsselwörter werden geblockt + + + tricheur + Seiten, die Betrügereien bei Prüfungen erklären + + + warez + Seiten mit gefälschter Software + + + webmail + Webmailer (GMX, Web.de etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Ungefilterte IP-Adressen + + + DESC_BLACK +
Sie können hier blockierte URLs oder IP-Adressen eingeben.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Erlaubte Webseiten oder IP-Adressen + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/el/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/el/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..47acf59 --- /dev/null +++ b/root/etc/e-smith/locale/el/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Απενεργοποιημένος/η/ο + + + ENABLED + Ενεργοποιήθηκε + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/en-us/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/en-us/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..7d12afd --- /dev/null +++ b/root/etc/e-smith/locale/en-us/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/es/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/es/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..2c938d7 --- /dev/null +++ b/root/etc/e-smith/locale/es/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Deshabilitado + + + ENABLED + Habilitado + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/et/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/et/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..bf8c870 --- /dev/null +++ b/root/etc/e-smith/locale/et/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Keelatud + + + ENABLED + Lubatud + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/fr/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/fr/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..edbce36 --- /dev/null +++ b/root/etc/e-smith/locale/fr/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Filtrage Web + + + FORM_TITLE + Configuration du filtrage Web + + + PAGE_DESCRIPTION + Cette page vous permet de bloquer certaines catégories de sites Web + + + DISABLED + Désactivé + + + ENABLED + Activé + + + DESC_URL_FILTER_STATUS + Voulez-vous activer le filtrage d'URL et bloquer certaines catégories de sites Web ? + + + LABEL_URL_FILTER_STATUS + Filtrage d'URLs + + + DESC_AV_FILTER_STATUS + Voulez-vous activer le filtrage antivirus et bloquer les téléchargements de fichiers infectés ? + + + LABEL_AV_FILTER_STATUS + Filtrage AV + + + DESC_BLOCKED_CATEGORIES + Vous pouvez vérifier les catégories de sites Web que vous voulez bloquer + + + BLOCKED_OR_NOT + Bloqué ? + + + CATEGORY + Catégorie + + + BLOCKED_CATEGORIES + Catégories bloquées + + + NOT_A_VALID_IP_LIST + Ce champ contient une ou plusieurs entrées erronées + + + adult + Sites pour adultes allant de la pornographie érotique à la pornographie « hardcore » + + + agressif + Sites racistes, antisémites, incitant à la haine + + + arjel + Sites de paris en ligne certifiés par l'ARJEL + + + astrology + Sites relatifs à l'astrologie + + + audio-video + Sites audio et video + + + bank + Sites de banques en ligne + + + blog + Sites hébergeant des blogues + + + celebrity + Sites d'information « people » + + + chat + Sites de messageries instantanées + + + child + Sites favoris des enfants + + + cleaning + Sites Web de désinfection et de mises à jour d'ordinateurs + + + cooking + Sites de fichiers témoins (« cookies ») + + + dangerous_material + Sites Web décrivant comment créer des matières dangereuses (explosif, poison, etc.) + + + dating + Sites Web de rencontres + + + drogue + Sites Web liés à la drogue + + + filehosting + Sites Web hébergeant des fichiers (vidéo, images, audio) + + + financial + Sites Web de la finance + + + forums + Forums + + + gambling + Sites Web de jeux en ligne, casinos, etc. + + + games + Jeux en ligne ou vente de jeux + + + hacking + Sites Web de piratage et d'attaques d'ordinateur + + + jobsearch + Recherche d'emploi + + + liste_bu + Sites Web éducatifs pour « univ-tise1.fr » + + + malware + Sites Web d'injection de logiciels malfaisants + + + manga + Sites Web relatifs aux mangas et aux bandes dessinées + + + marketingware + Sites Web de commerce très spécial + + + mobile-phone + Sites Web liés à la téléphonie (sonneries, etc.) + + + phishing + Sites Web d’hameçonnage, de pièges bancaires et autres + + + press + Sites Web d'informations + + + publicite + Publicité + + + radio + Radios sur Internet + + + reaffected + Site qui ont changé de propriétaire et donc de contenu + + + redirector + Filtrage des sites Web de contournement + + + remote-control + Sites Web de prise de contrôle à distance + + + sect + Sectes + + + sexual_education + Sites Web qui parlent d'éducation sexuelle et peuvent être détectés comme pornographiques + + + shopping + Sites Web marchands + + + social_networks + Réseaux sociaux + + + sports + Sports + + + strict_redirector + Comme « redirector » mais inclut les moteurs de recherche classiques + + + strong_redirector + Comme « strict_redirector » mais pour Google et autres, bloque seulement quelques mots-clés + + + tricheur + Sites Web qui expliquent comment tricher aux examens + + + warez + Sites Web de logiciels contrefaits + + + webmail + Messageries sur le Web (hotmail, gmail, etc) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Adresses IP non filtrées + + + DESC_BLACK +
Vous pouvez entrer ici une liste de noms de domaines bloqués ou d'URLs.]]> + + + LABEL_BLACK + Liste noire + + + DESC_WHITE + Entrer ici une liste de noms de domaine ou d'URLs qui seront autorisés + + + LABEL_WHITE + Liste blanche + + diff --git a/root/etc/e-smith/locale/he/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/he/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..8ddeb55 --- /dev/null +++ b/root/etc/e-smith/locale/he/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/hu/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/hu/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..60ab484 --- /dev/null +++ b/root/etc/e-smith/locale/hu/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Letiltva + + + ENABLED + Engedélyezve + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/id/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/id/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..355eb00 --- /dev/null +++ b/root/etc/e-smith/locale/id/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/it/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/it/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..ae79a2a --- /dev/null +++ b/root/etc/e-smith/locale/it/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Filtro Web + + + FORM_TITLE + Configurazione filtro Web + + + PAGE_DESCRIPTION + Questa pagina consente di bloccare alcune categorie di siti Web + + + DISABLED + Disabilitato + + + ENABLED + Abilitato + + + DESC_URL_FILTER_STATUS + Si vuole abilitare il filtro URL e bloccare categorie selezionate di Siti Web? + + + LABEL_URL_FILTER_STATUS + Filtro URL + + + DESC_AV_FILTER_STATUS + Si vuole attivare il filtro antivirus e bloccare il download di file infetti ? + + + LABEL_AV_FILTER_STATUS + Filtro AV + + + DESC_BLOCKED_CATEGORIES + Si possono controllare le categorie di Siti Web che si vogliono bloccare + + + BLOCKED_OR_NOT + Bloccato? + + + CATEGORY + Categoria + + + BLOCKED_CATEGORIES + Categorie bloccate + + + NOT_A_VALID_IP_LIST + Il campo contiene una o più righe scorrette + + + adult + Siti per adulti spazianti dall'erotismo alla pornografia hardcore + + + agressif + siti razzisti, antisemiti, incitanti all'odio + + + arjel + Siti di scommesse online certificati da ARJEL + + + astrology + Siti astrologici + + + audio-video + Siti contenenti file audio e video + + + bank + Siti di banking online + + + blog + Siti di blogging + + + celebrity + Siti di notizie mondane + + + chat + Chat online + + + child + Siti approvati per bambini + + + cleaning + Siti Web per ripulire ed aggiornare computer + + + cooking + Siti di cucina + + + dangerous_material + Siti Web che descrivono la creazione di sostanze pericolose (esplosivi, veleni, etc.) + + + dating + Siti per incontri on-line (Dating) + + + drogue + Siti che pubblcizzano o commercializzano droghe + + + filehosting + Siti per deposito di file (video, immagini, audio) + + + financial + Siti Web di finanza + + + forums + Forums + + + gambling + Siti per giochi online, casino, etc. + + + games + Siti per giochi online o per distribuzione di giochi + + + hacking + Siti di hacking e attacco ai PC + + + jobsearch + Siti Web di ricerca di lavoro + + + liste_bu + Siti Web di istruzione per "univ-tlse1.fr" + + + malware + Siti Web che infettano con badware + + + manga + Siti Web su manga e fumetti in generale + + + marketingware + Siti Web di commercio molto speciali + + + mobile-phone + Siti Web di telefonia (suoneria ecc.) + + + phishing + Siti Web di phishing, finte banche ed altro + + + press + Siti Web di informazione + + + publicite + Siti Web di pubblicità + + + radio + Radio Internet + + + reaffected + Siti Web che hanno cambiato proprietario e quindi contenuti + + + redirector + Siti Web per evitare il filtro contenuti + + + remote-control + Siti Web per il controllo remoto + + + sect + Sette + + + sexual_education + Siti Web che trattano di educazione sessuale e sono rilevati come pornografici + + + shopping + Siti Web di acquisto on-line + + + social_networks + Social network + + + sports + Siti Web di sport + + + strict_redirector + Come redirector, ma include i motori di ricerca classici + + + strong_redirector + Come strict_redirector, ma per google ed altri blocca solo alcune parole chiave + + + tricheur + Siti Web che spiegano come imbrogliare agli esami + + + warez + Siti Web di software contraffatto + + + webmail + Webmail (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Indirizzi IP non filtrati + + + DESC_BLACK +
Qui si può inserire la lista di domini o URL bloccat.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Inserire qui la lista di nomi di dominio o URL che saranno consentiti + + + LABEL_WHITE + White List + + diff --git a/root/etc/e-smith/locale/ja/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/ja/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..ba8c540 --- /dev/null +++ b/root/etc/e-smith/locale/ja/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/nb/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/nb/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..4b71c5a --- /dev/null +++ b/root/etc/e-smith/locale/nb/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Deaktivert + + + ENABLED + aktivert + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/nl/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/nl/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..abce06d --- /dev/null +++ b/root/etc/e-smith/locale/nl/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Inactief + + + ENABLED + Actief + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/pl/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/pl/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..7eaa64e --- /dev/null +++ b/root/etc/e-smith/locale/pl/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Enabled + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/pt-br/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/pt-br/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..eaf835d --- /dev/null +++ b/root/etc/e-smith/locale/pt-br/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Filtragem Web + + + FORM_TITLE + Configuraçã de filtragem Web + + + PAGE_DESCRIPTION + Esta página permite voce bloquear algumas categorias de sites web + + + DISABLED + Desabilitado + + + ENABLED + Habilitado + + + DESC_URL_FILTER_STATUS + Você deseja habilitar a filtragem de URL e bloquear as categorias de web sites selecionadas ? + + + LABEL_URL_FILTER_STATUS + Filtragem de URL + + + DESC_AV_FILTER_STATUS + Você quer habilitar a filtragem com antivirus e bloquear download de arquivos infectados ? + + + LABEL_AV_FILTER_STATUS + Filtragem AV + + + DESC_BLOCKED_CATEGORIES + Você deve marcar as categorias de sites web que deseja bloquear + + + BLOCKED_OR_NOT + Bloqueado ? + + + CATEGORY + Categoria + + + BLOCKED_CATEGORIES + Categorias bloqueadas + + + NOT_A_VALID_IP_LIST + Este campo contem um ou mais entradas inválidas + + + adult + Sites adultos, desde eroticos até pornografia hardcore + + + agressif + racistas, anti-semitas, sites que incitam violencia e ódio + + + arjel + Site online de apostas certificados pela ARJEL + + + astrology + Sites relacionadoas a astrologia + + + audio-video + Sites de Audio and video + + + bank + Sites de bancos online + + + blog + Sites que hospedam Blogs + + + celebrity + Sites com notícias de Celebridades + + + chat + Sites de bate papo online + + + child + Sites aprovados para crianças + + + cleaning + Sites para limpar e atualizar computadores + + + cooking + Sites sobre Cozinha + + + dangerous_material + Sites descrevendo como criar materias perigosos (explosivos, veneno, etc.) + + + dating + Sites de encontros + + + drogue + Sites relacionados a drogas + + + filehosting + Sites de hospedagem de arquivos video, imagens, áudio) + + + financial + Sites Financeiros + + + forums + Foruns de discussão + + + gambling + Site de jogos online, cassinos, etc. + + + games + Jogos online games ou distribuição de jogos + + + hacking + Sites de Hacking e ataques a computadores + + + jobsearch + Sites de procura de emprego + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Sites que injetam malware + + + manga + Sites de conteúdo relacionado a Manga e gibis + + + marketingware + Sites de Marketing muito especiais + + + mobile-phone + Sites relacionados a telefone (toques, etc.) + + + phishing + Sites de Phishing, falsos bancos e correlatos + + + press + Sites de Notícias + + + publicite + Publicidade + + + radio + Radios via Internet + + + reaffected + Sites que mudaram de proprietário e por isso de conteúdo + + + redirector + Sites ensinando a contornar filtragem web + + + remote-control + Sites de Controle Remoto + + + sect + Sects + + + sexual_education + Sites que falam sobre educação sexual e podem ser detectados como pornografia + + + shopping + Sites de Compras + + + social_networks + Redes Sociais + + + sports + Esportes + + + strict_redirector + Sites que ensinam contornar filtragem e incluindo os mecanismos de busca clássicos + + + strong_redirector + Sites que ensinam contornar filtragem, mas para os mecanismos de busca clássicos, somente algumas palavras chave são bloqueadas + + + tricheur + Sites que explicam como trapacear em exames + + + warez + Sites de pirataria de software - warez + + + webmail + Webmails (HotMail, Gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Endereços IP sem filtragem + + + DESC_BLACK +
Você pode digitar aqui uma lista de URLs ou nomes de domínio.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Digite aqui uma lista de nomes de domínio ou URL que serão liberados + + + LABEL_WHITE + Lista Branca + + diff --git a/root/etc/e-smith/locale/pt/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/pt/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..1470c59 --- /dev/null +++ b/root/etc/e-smith/locale/pt/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Desabilitado + + + ENABLED + Habilitado + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/ro/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/ro/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..fef545c --- /dev/null +++ b/root/etc/e-smith/locale/ro/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Disabled + + + ENABLED + Activat + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/ru/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/ru/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..f4132c8 --- /dev/null +++ b/root/etc/e-smith/locale/ru/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Отключен + + + ENABLED + Включен + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/sl/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/sl/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..e011482 --- /dev/null +++ b/root/etc/e-smith/locale/sl/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Onemogoceno + + + ENABLED + Omogoceno + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/sv/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/sv/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..2d3f488 --- /dev/null +++ b/root/etc/e-smith/locale/sv/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Ej tillåten + + + ENABLED + Tillåten + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/th/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/th/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..8a40424 --- /dev/null +++ b/root/etc/e-smith/locale/th/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + ปิดไม่ใช้งาน + + + ENABLED + เปิดใช้งาน + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/tr/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/tr/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..a7f5fc2 --- /dev/null +++ b/root/etc/e-smith/locale/tr/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + Etkin değil + + + ENABLED + Etkin + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/locale/zh-cn/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/zh-cn/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..190b9d8 --- /dev/null +++ b/root/etc/e-smith/locale/zh-cn/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + 网页过滤 + + + FORM_TITLE + 网页过滤设置 + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + 禁用 + + + ENABLED + 启用 + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL 过滤 + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + 病毒过滤 + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + 在线赌博网站 + + + astrology + 迷信类网站 + + + audio-video + 音视频网站 + + + bank + 电子银行 + + + blog + 博客托管 + + + celebrity + "People" news sites + + + chat + 在线聊天 + + + child + 儿童网站 + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + 约会网站 + + + drogue + 毒品相关的网站 + + + filehosting + 文件托管类网站 (视频, 图片, 音频) + + + financial + 财经网站 + + + forums + 社区网站 + + + gambling + 在线游戏类的网站. + + + games + 在线游戏或游戏发行类的网站 + + + hacking + 黑客网站 + + + jobsearch + 找工作的网站 + + + liste_bu + 教育类网站 + + + malware + 包含恶意软件的网站 + + + manga + 动漫类网站 + + + marketingware + 小众网站 + + + mobile-phone + 电话销售类网站 + + + phishing + 钓鱼网站 + + + press + 新闻网站 + + + publicite + 广告 + + + radio + 互联网电台 + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + 例外的网站 + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + 色情网站 + + + shopping + 购物网站 + + + social_networks + 社交网络 + + + sports + 体育 + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + 考试作弊网站 + + + warez + 盗版软件网站 + + + webmail + 网页邮箱 (hotmail, gmail 等.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + 黑名单 + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + 白名单 + + diff --git a/root/etc/e-smith/locale/zh-tw/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/locale/zh-tw/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..c4f9a2e --- /dev/null +++ b/root/etc/e-smith/locale/zh-tw/etc/e-smith/web/functions/webfilter @@ -0,0 +1,258 @@ + + + WEB_FILTERING + Web Filtering + + + FORM_TITLE + Web filtering configuration + + + PAGE_DESCRIPTION + This page lets you block some websites categories + + + DISABLED + 禁用 + + + ENABLED + 啟用 + + + DESC_URL_FILTER_STATUS + Do you want to enable URL filtering and block selected website categories ? + + + LABEL_URL_FILTER_STATUS + URL Filtering + + + DESC_AV_FILTER_STATUS + Do you want to enable antivirus filtering and block infected files downloads ? + + + LABEL_AV_FILTER_STATUS + AV Filtering + + + DESC_BLOCKED_CATEGORIES + You can check websites categories you want to block + + + BLOCKED_OR_NOT + Blocked ? + + + CATEGORY + Category + + + BLOCKED_CATEGORIES + Blocked categories + + + NOT_A_VALID_IP_LIST + This field contains one or more bad entries(s) + + + adult + Adult sites ranging from erotic to hardcore pornography + + + agressif + racist, antisemitic, inciting to hatred sites + + + arjel + Online betting sites certified by the ARJEL + + + astrology + Astrology related sites + + + audio-video + Audio and video sites + + + bank + Online banking sites + + + blog + Blog hosting sites + + + celebrity + "People" news sites + + + chat + Online chating sites + + + child + Child approved sites + + + cleaning + Websites to sanitize and update computers + + + cooking + Cooking sites + + + dangerous_material + websites describing how to create hazardous materials (explosive, poison, etc.) + + + dating + Dating websites + + + drogue + Drugs related websites + + + filehosting + File hosting websites (video, images, audio) + + + financial + Financial websites + + + forums + Forums + + + gambling + Online gaming websites, casinos, etc. + + + games + Online games or games distribution + + + hacking + Hacking and computer attacks websites + + + jobsearch + Job search + + + liste_bu + educational websites for "univ-tlse1.fr" + + + malware + Websites injecting badwares + + + manga + Manga and comics related websites + + + marketingware + Very special marketing websites + + + mobile-phone + Phone related websites (ring, etc.) + + + phishing + Phishing, bank traps ans other websites + + + press + News websites + + + publicite + Advertisement + + + radio + Internet radios + + + reaffected + Sites that have changed ownership and therefore content + + + redirector + Filtering bypass websites + + + remote-control + Remote control websites + + + sect + Sects + + + sexual_education + websites that talk about sex education and can be detected as pornographic + + + shopping + Shopping websites + + + social_networks + Social networks + + + sports + Sports + + + strict_redirector + Like redirector, but include classic search engines + + + strong_redirector + Like strict_redirector, but for google and others, only block some keywords + + + tricheur + websites that explain how to cheat on exams + + + warez + Counterfeit softwares websites + + + webmail + Webmails (hotmail, gmail etc.) + + + DESC_UNRESTRICTED +
192.168.1.20
192.168.2.0/24
192.168.3.0/255.255.255.0
192.168.4.5-192.168.4.10
]]> + + + LABEL_UNRESTRICTED + Unfiltered IP addresses + + + DESC_BLACK +
You can enter here a list of blocked domain names or urls.]]> + + + LABEL_BLACK + Blacklist + + + DESC_WHITE + Enter here a domain names or urls list which will be allowed + + + LABEL_WHITE + Whitelist + + diff --git a/root/etc/e-smith/templates.metadata/etc/cron.daily/squidGuard b/root/etc/e-smith/templates.metadata/etc/cron.daily/squidGuard new file mode 100644 index 0000000..6bbf39b --- /dev/null +++ b/root/etc/e-smith/templates.metadata/etc/cron.daily/squidGuard @@ -0,0 +1 @@ +PERMS=0755 diff --git a/root/etc/e-smith/templates.metadata/etc/e-smith/sql/init/squiddblogd b/root/etc/e-smith/templates.metadata/etc/e-smith/sql/init/squiddblogd new file mode 100644 index 0000000..940dcf3 --- /dev/null +++ b/root/etc/e-smith/templates.metadata/etc/e-smith/sql/init/squiddblogd @@ -0,0 +1 @@ +PERMS=0750 diff --git a/root/etc/e-smith/templates/etc/cron.daily/squidGuard/10All b/root/etc/e-smith/templates/etc/cron.daily/squidGuard/10All new file mode 100644 index 0000000..ea1b06a --- /dev/null +++ b/root/etc/e-smith/templates/etc/cron.daily/squidGuard/10All @@ -0,0 +1 @@ +exec /etc/e-smith/events/actions/squidguard-update-databases 2>&1 > /dev/null diff --git a/root/etc/e-smith/templates/etc/e-smith/sql/init/squiddblogd b/root/etc/e-smith/templates/etc/e-smith/sql/init/squiddblogd new file mode 100644 index 0000000..7148e1c --- /dev/null +++ b/root/etc/e-smith/templates/etc/e-smith/sql/init/squiddblogd @@ -0,0 +1,47 @@ +{ +my $db = ${'squid-db-logd'}{'DbName'} || 'squid_log'; +my $user = ${'squid-db-logd'}{'DbUser'} || 'squid'; +my $pass = ${'squid-db-logd'}{'DbPassword'} || 'squid'; + +my $dbstruct = `rpm -qd smeserver-webfilter | grep squid_log.sql`; + +$OUT .= <<"END"; +#! /bin/sh +if [ ! -d /var/lib/mysql/$db ]; then + /usr/bin/mysql -e 'create database $db' + /usr/bin/mysql $db < $dbstruct +fi + +/usr/bin/mysql < + AllowOverride None + Options +ExecCGI + Require all granted + + + AllowOverride None + Options None + Require all granted + diff --git a/root/etc/e-smith/templates/etc/logrotate.d/squidGuard/10All b/root/etc/e-smith/templates/etc/logrotate.d/squidGuard/10All new file mode 100644 index 0000000..d0c1586 --- /dev/null +++ b/root/etc/e-smith/templates/etc/logrotate.d/squidGuard/10All @@ -0,0 +1,9 @@ +/var/log/squidGuard/*.log \{ + weekly + rotate 52 + copytruncate + compress + notifempty + missingok +\} + diff --git a/root/etc/e-smith/templates/etc/squid/squid.conf/80squidFilter b/root/etc/e-smith/templates/etc/squid/squid.conf/80squidFilter new file mode 100644 index 0000000..c7e4a62 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squid.conf/80squidFilter @@ -0,0 +1,25 @@ +{ +my $sg = $squidguard{'status'} || 'disabled'; +my $sc = $squidclamav{'status'} || 'disabled'; +my $redir = ''; + +if ($sc eq 'enabled'){ + $redir = '/usr/bin/squidclamav'; +} +elsif ($sg eq 'enabled'){ + $redir = '/usr/bin/squidGuard'; +} + +if ($redir ne ''){ + $OUT .=<<"EOF"; +redirect_program $redir +redirect_children 20 +EOF +} +else{ + $OUT .= '# neither squidGuard nor squidclamav is enabled'; +} +} + +acl self src 127.0.0.1 +url_rewrite_access deny self diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/10path b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/10path new file mode 100644 index 0000000..ce41c4e --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/10path @@ -0,0 +1,2 @@ +dbhome /var/squidGuard +logdir /var/log/squidGuard diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/30unrestricted b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/30unrestricted new file mode 100644 index 0000000..045db79 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/30unrestricted @@ -0,0 +1,13 @@ +src unrestricted \{ +{ + +my $ip = $squidguard{'UnrestrictedIP'} || ''; +$ip =~ s/[,;]/ /g; +$OUT .=<<"EOF" if ($ip ne ''); + + ip $ip + +EOF + +} +\} diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/40categories b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/40categories new file mode 100644 index 0000000..48f5057 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/40categories @@ -0,0 +1,33 @@ +dest black \{ + log deny.log + domainlist blacklists/black/domains + urllist blacklists/black/urls +\} +dest white \{ + log white.log + domainlist blacklists/white/domains + urllist blacklists/white/urls +\} + +{ +my @hide = split (/[;,]/, ($squidguard{'DisabledCategories'} || '')); + +opendir BL, '/var/squidGuard/blacklists/' || die "Couldn't open blacklists dir\n"; + +while (my $cat = readdir(BL)){ + next if (!-d "/var/squidGuard/blacklists/$cat" || + $cat =~ /^\./ || + $cat eq 'black' || + $cat eq 'white' || + grep { $_ eq $cat } @hide ); + $OUT .= "dest $cat {\n\tlog deny.log\n"; + $OUT .= "\tdomainlist blacklists/$cat/domains\n" + if (-e "/var/squidGuard/blacklists/$cat/domains"); + $OUT .= "\turllist blacklists/$cat/urls\n" + if (-e "/var/squidGuard/blacklists/$cat/urls"); + $OUT .= "\texpressionlist blacklists/$cat/expressions\n" + if (-e "/var/squidGuard/blacklists/$cat/expressions"); + $OUT .= "}\n"; +} +closedir BL; +} diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl10start b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl10start new file mode 100644 index 0000000..a3eb7c3 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl10start @@ -0,0 +1 @@ +acl \{ diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl20unrestricted b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl20unrestricted new file mode 100644 index 0000000..7951e1d --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl20unrestricted @@ -0,0 +1,3 @@ + unrestricted \{ + pass any + \} diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl80default b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl80default new file mode 100644 index 0000000..2f51187 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl80default @@ -0,0 +1,17 @@ +{ +my @blocked = split(/[;,]/, ($squidguard{'BlockedCategories'} || '')); +my $redirect = $squidguard{'RedirectUrl'} || + "http://$SystemName.$DomainName/squidGuard/". + 'cgi-bin/blocked.cgi?clientaddr=%a&clientname=%n'. + '&clientuser=%i&clientgroup=%s&targetgroup=%t&url=%u'; + +my $deny = 'white !black'; +$deny .= " !$_" foreach (@blocked); +$deny .= " !in-addr" if (($squidguard{'DenyIP'} || 'disabled') eq 'enabled'); +$OUT .=<<"EOF"; + default { + pass $deny any + redirect $redirect + } +EOF +} diff --git a/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl99end b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl99end new file mode 100644 index 0000000..dbea7aa --- /dev/null +++ b/root/etc/e-smith/templates/etc/squid/squidGuard.conf/50acl99end @@ -0,0 +1 @@ +\} diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/010squid b/root/etc/e-smith/templates/etc/squidclamav.conf/010squid new file mode 100644 index 0000000..2a782e3 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/010squid @@ -0,0 +1,2 @@ +squid_ip 127.0.0.1 +squid_port {$squid{'TCPPort'} || '3128';} diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/020log b/root/etc/e-smith/templates/etc/squidclamav.conf/020log new file mode 100644 index 0000000..8b74bf9 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/020log @@ -0,0 +1,16 @@ +logfile /var/log/squid/squidclamav.log +{ +my $debug = $squidclamav{'Debug'} || 'no'; +if ($debug =~ m/^yes|enabled|on|1$/i){ + $OUT .=<<"EOF"; + +debug 1 +stat 1 +logredir 1 + +EOF +} +else{ + $OUT .= "# Debuging is disabled\n"; +} +} diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/030clam b/root/etc/e-smith/templates/etc/squidclamav.conf/030clam new file mode 100644 index 0000000..73e7040 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/030clam @@ -0,0 +1,2 @@ +clamd_local /var/clamav/clamd.socket +maxsize {$squidclamav{'MaxScanSize'} || '5000000';} diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/040squidGuard b/root/etc/e-smith/templates/etc/squidclamav.conf/040squidGuard new file mode 100644 index 0000000..15f0213 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/040squidGuard @@ -0,0 +1,9 @@ +{ +my $sg = $squidguard{'status'} || 'disabled'; +if ($sg eq 'enabled'){ + $OUT .= "squidguard /usr/bin/squidGuard\n"; +} +else{ + $OUT .= "# squidGuard is disabled\n"; +} +} diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/050redirect b/root/etc/e-smith/templates/etc/squidclamav.conf/050redirect new file mode 100644 index 0000000..c676690 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/050redirect @@ -0,0 +1 @@ +redirect http://{$SystemName.'.'.$DomainName}/squidGuard/cgi-bin/blocked.cgi diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/060var b/root/etc/e-smith/templates/etc/squidclamav.conf/060var new file mode 100644 index 0000000..8787de0 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/060var @@ -0,0 +1,4 @@ +maxredir 30 +timeout 60 +useragent Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) + diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/070exclude b/root/etc/e-smith/templates/etc/squidclamav.conf/070exclude new file mode 100644 index 0000000..e16c856 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/070exclude @@ -0,0 +1,11 @@ +# Do not scan images +abort ^.*\.(ico|gif|png|jpg)$ +abortcontent ^image\/.*$ + +# Do not scan streamed videos +abortcontent ^video\/x-flv$ +abortcontent ^video\/mp4$ + +# Do not scan sequence of framed Microsoft Media Server (MMS) data packets +abortcontent ^.*application\/x-mms-framed.*$ + diff --git a/root/etc/e-smith/templates/etc/squidclamav.conf/080whitelist b/root/etc/e-smith/templates/etc/squidclamav.conf/080whitelist new file mode 100644 index 0000000..ab81cc0 --- /dev/null +++ b/root/etc/e-smith/templates/etc/squidclamav.conf/080whitelist @@ -0,0 +1,10 @@ +{ + +if ( -e "/etc/squid/clamav_whitelist" ){ + Text::Template::_load_text("/etc/squid/clamav_whitelist"); +} +else{ + $OUT .= ""; +} + +} diff --git a/root/etc/e-smith/templates/usr/share/squidGuard/conf.txt/10All b/root/etc/e-smith/templates/usr/share/squidGuard/conf.txt/10All new file mode 100644 index 0000000..d6c166e --- /dev/null +++ b/root/etc/e-smith/templates/usr/share/squidGuard/conf.txt/10All @@ -0,0 +1,9 @@ +image = /usr/share/squidGuard/images/blocked.gif +redirect = http://{$SystemName.'.'.$DomainName}/images/blocked.gif +proxy = {$SystemName.'.'.$DomainName} +proxymaster = admin@{$DomainName} +autoinaddr = 2 +company = {$squidGuard{'CompanyName'} || $ldap{'defaultCompany'}} +companylogo = {$squidGuard{'CompanyLogo'} || ''} +squidguard = http://www.squidguard.org +squidguardlogo = http://www.squidguard.org/Logos/squidGuard.gif diff --git a/root/etc/e-smith/web/functions/webfilter b/root/etc/e-smith/web/functions/webfilter new file mode 100644 index 0000000..180e8a7 --- /dev/null +++ b/root/etc/e-smith/web/functions/webfilter @@ -0,0 +1,79 @@ +#!/usr/bin/perl -wT + +#---------------------------------------------------------------------- +# heading : Configuration +# description : WEB_FILTERING +# navigation : 6000 6950 +#---------------------------------------------------------------------- +# Copyright (C) 2011-2012 Firewall Services +# daniel@firewall-services.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 3 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +# + +use strict; +use esmith::FormMagick; +use esmith::FormMagick::Panel::webfilter; +my $f = esmith::FormMagick::Panel::webfilter->new(); +$f->display(); + + +__DATA__ +
+ + PAGE_DESCRIPTION + + + DESC_URL_FILTER_STATUS + + + + + DESC_AV_FILTER_STATUS + + + + + DESC_BLOCKED_CATEGORIES + + + + + + DESC_UNRESTRICTED + + + + + DESC_BLACK + + + + DESC_WHITE + + + + + +
diff --git a/root/etc/logrotate.d/squidclamav b/root/etc/logrotate.d/squidclamav new file mode 100644 index 0000000..d1023cf --- /dev/null +++ b/root/etc/logrotate.d/squidclamav @@ -0,0 +1,9 @@ +/var/log/squid/squidclamav.log { + weekly + rotate 52 + copytruncate + compress + notifempty + missingok +} + diff --git a/root/usr/bin/squid-db-logd b/root/usr/bin/squid-db-logd new file mode 100644 index 0000000..adfe3c3 --- /dev/null +++ b/root/usr/bin/squid-db-logd @@ -0,0 +1,223 @@ +#!/usr/bin/perl -w + +use File::Tail; +use DBI; +use URI; +use Getopt::Long; +use threads; +use threads::shared; +use strict; + +our %opts = (); + +# Set default options +$opts{squidlog} = '/var/log/squid/access.log'; +$opts{squidguardlog} = '/var/log/squidGuard/deny.log'; +$opts{squid} = 1; +$opts{squidguard} = 0; +$opts{debug} = 0; +$opts{dbhost} = 'localhost'; +$opts{dbname} = 'squid_log'; +$opts{dbuser} = 'squid'; +$opts{dbpass} = 'squid'; + +# get command line arguments +GetOptions( + "debug=i" => \$opts{debug}, + "squidlog=s" => \$opts{squidlog}, + "squidguardlog=s" => \$opts{squidguardlog}, + "squid!" => \$opts{squid}, + "squidguard!" => \$opts{squidguard}, + "dbhost=s" => \$opts{dbhost}, + "dbname=s" => \$opts{dbname}, + "dbuser=s" => \$opts{dbuser}, + "dbpass=s" => \$opts{dbpass} +); + +# Disable output buffering +select(STDOUT); +$| = 1; +select(STDERR); +$| = 1; + +open STDERR, '>&STDOUT'; + +# Set process name +$0 = 'squid-db-logd'; + +# Get hostname +our $host = `hostname`; +chomp($host); + +### Subroutines + +# Print messages on stderr +# for debuging purpose +sub printlog { + my $msg = shift; + print "$msg\n"; + return; +} + +# Connect to the database +sub db_connect { + my $dbh = DBI->connect("DBI:mysql:database=$opts{dbname};host=$opts{dbhost}", + $opts{dbuser}, $opts{dbpass}, {RaiseError => 1}); + die "Couldn't connect to database\n" unless ($dbh); + return $dbh; +} + +# escape chars for MySQL queries +sub mysql_escape { + my $string = shift; + $string =~ s|'|\\'|g; + return $string; +} + +# log squid access + +# prepare squid insert query +sub squid_prepare { + my $dbh = shift; + my $q = "INSERT INTO access_log (proxy_host, timestamp, response_time, ". + "client_ip, squid_status, http_status, reply_size, request_method, ". + "url, domain, username, squid_connect, server_ip, mime_type) ". + "VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?)"; + my $qh = $dbh->prepare($q); + return $qh; +} + +# prepare squidGuard insert query +sub squidguard_prepare { + my $dbh = shift; + my $q = "INSERT INTO deny_log (proxy_host, date_day, date_time, ". + "category, client_ip, url, domain, username) ". + "VALUES(?,?,?,?,?,?,?,?)"; + my $qh = $dbh->prepare($q); + return $qh; +} + +sub squid_log { + + my $logfile = shift; + + printlog("squid_log thread connecting to database") if ($opts{debug} ge 1); + my $dbh = db_connect; + my $qh = squid_prepare($dbh); + # Open log file + + printlog("opening squid log file") if ($opts{debug} ge 1); + my $tail = File::Tail->new(name=>$logfile, maxinterval=>15); + + while (defined(my $line=$tail->read)){ + my ($timestamp, $response_time, $client_ip, $status, $reply_size, + $request_method, $url, $username, $server, $mime_type) = split /\s+/, $line; + my ($squid_status, $http_status) = split /\//, $status; + my ($squid_connect, $server_ip) = split /\//, $server; + + # Skip stats requested by squidclient + next if ($url =~ m/^cache_object:/); + + my $domain; + if ($request_method eq 'CONNECT'){ + ($domain,undef) = split /:/, $url; + } + elsif ($url =~ m/^error:/){ + (undef,$domain) = split /:/, $url; + } + else{ + my $uri = URI->new($url); + $domain = $uri->host; + } + + # MySQL escape + # Shouldn't be needed, but just in case logs contains junk + $timestamp = mysql_escape($timestamp); + $response_time = mysql_escape($response_time); + $client_ip = mysql_escape($client_ip); + $squid_status = mysql_escape($squid_status); + $http_status = mysql_escape($http_status); + $reply_size = mysql_escape($reply_size); + $request_method = mysql_escape($request_method); + $url = mysql_escape($url); + $domain = mysql_escape($domain); + $username = mysql_escape($username); + $squid_connect = mysql_escape($squid_connect); + $server_ip = mysql_escape($server_ip); + $mime_type = mysql_escape($mime_type); + + printlog("New access_log entry:\ntimestamp: $timestamp\nresponse_time: $response_time\n". + "client_ip: $client_ip\nsquid_status: $squid_status\nhttp_status: $http_status\n". + "reply_size: $reply_size\nrequest_method: $request_method\nurl: $url\n". + "username: $username\nsquid_connect: $squid_connect\n". + "server_ip: $server_ip\nmime_type: $mime_type\n\n") if ($opts{debug} ge 2); + + $qh->execute($host, $timestamp,$response_time,$client_ip,$squid_status, + $http_status,$reply_size,$request_method,$url,$domain, + $username,$squid_connect,$server_ip,$mime_type) || die "Database error: ".$qh->errstr; + + } +} + +# log squid access +sub squidguard_log { + + my $logfile = shift; + + printlog("squidguard_log thread connecting to database") if ($opts{debug} ge 1); + my $dbh = db_connect; + my $qh = squidguard_prepare($dbh); + + # Open log file + printlog("opening squidGuard log file") if ($opts{debug} ge 1); + my $tail = File::Tail->new(name=>$logfile, maxinterval=>15); + + while (defined(my $line=$tail->read)){ + my ($date_day, $date_time, undef, $category, $url, $client_ip, $username) = split /\s+/, $line; + # Clean some values + $category =~ m/default\/(\w+)/; + $category = $1; + $client_ip =~ s/\/\-$//; + + my $domain; + # Use the URI parser if possible + if ($url =~ m/^https?:\/\//){ + my $uri = URI->new($url); + $domain = $uri->host; + } + # Else, it's a CONNECT method like www.domain.tld:443 + else { + ($domain,undef) = split /:/, $url; + } + $domain = mysql_escape($domain); + + # MySQL escape + $date_day = mysql_escape($date_day); + $date_time = mysql_escape($date_time); + $category = mysql_escape($category); + $url = mysql_escape($url); + $client_ip = mysql_escape($client_ip); + $username = mysql_escape($username); + + printlog("New deny_log entry:\ndate: $date_day\ntime: $date_time\ncategory: $category\n". + "client_ip: $client_ip\nurl: $url\nusername: $username\n\n") if ($opts{debug} ge 2); + + $qh->execute($host,$date_day,$date_time,$category,$client_ip,$url,$domain,$username) || + die "Database error: ".$qh->errstr; + + } +} + +printlog("Starting log monitoring threads") if ($opts{debug} ge 1); +my $thr1 = threads->create('squid_log', $opts{squidlog}) if ($opts{squid}); +my $thr = 1; +if ($opts{squidguard}){ + my $thr2 = threads->create('squidguard_log', $opts{squidguardlog}) if ($opts{squidguard}); + $thr++; +} + +while (scalar(threads->list(threads::running)) ge $thr){ + sleep(5); +} + +die "At least one thread died\n"; diff --git a/root/usr/share/perl5/vendor_perl/esmith/FormMagick/Panel/webfilter.pm b/root/usr/share/perl5/vendor_perl/esmith/FormMagick/Panel/webfilter.pm new file mode 100644 index 0000000..721c047 --- /dev/null +++ b/root/usr/share/perl5/vendor_perl/esmith/FormMagick/Panel/webfilter.pm @@ -0,0 +1,190 @@ +#!/usr/bin/perl -w + +package esmith::FormMagick::Panel::webfilter; + +use strict; + +use esmith::FormMagick; +use esmith::ConfigDB; +use esmith::cgi; +use Exporter; +use Carp; + +our @ISA = qw(esmith::FormMagick); + +our $db = esmith::ConfigDB->open() || die "Couldn't open config db"; + +sub new { + shift; + my $self = esmith::FormMagick->new(); + $self->{calling_package} = (caller)[0]; + bless $self; + return $self; +} + +sub get_prop{ + my ($self,$entrie,$prop) = @_; + return $db->get_prop($entrie, $prop) || ''; +} + +sub get_list{ + my ($self,$entrie,$prop) = @_; + my $values = get_prop($self,$entrie,$prop); + $values =~ s/[;,]/\n/g; + return $values; +} + +sub get_wbl{ + my ($self,$bl) = @_; + open FILE, "){ + $content .= $_; + } + close FILE; + open FILE, "){ + $content .= $_; + } + close FILE; + return $content; +} + +sub print_section_bar{ + my ($fm) = @_; + print " \n \n"; + print "
\n"; + return undef; +} + +sub print_categories{ + my ($fm) = @_; + my $q = $fm->{cgi}; + my @blockedCategories = split(/[,;]/, (get_prop($fm, 'squidguard', 'BlockedCategories'))); + print "", + $fm->localise('BLOCKED_CATEGORIES'), + "\n"; + print $q->start_table({-class => "sme-border"}),"\n"; + print $q->Tr( + esmith::cgi::genSmallCell($q, $fm->localise('BLOCKED_OR_NOT'),"header"), + esmith::cgi::genSmallCell($q, $fm->localise('CATEGORY'),"header"), + esmith::cgi::genSmallCell($q, $fm->localise('DESCRIPTION'),"header") + ); + my @categories = (); + my @hide = split(/[;,]/, (get_prop($fm, 'squidguard', 'DisabledCategories'))); + opendir BL, '/var/squidGuard/blacklists' || die "Couldn't open blacklists directory\n"; + while (my $cat = readdir(BL)){ + next if (!-d "/var/squidGuard/blacklists/$cat" || + $cat =~ /^\./ || + $cat eq 'black' || + $cat eq 'white' || + grep { $_ eq $cat } @hide); + push @categories, $cat; + } + closedir BL; + foreach my $c (sort @categories){ + my $checked = ''; + if (grep { $_ eq $c } @blockedCategories) { + $checked = 'checked'; + } + print $q->Tr( + $q->td( + "" + ), + esmith::cgi::genSmallCell($q, $c,"normal"), + esmith::cgi::genSmallCell( $q, $fm->localise($c),"normal") + ); + } + print "\n"; + return undef; +} + +sub change_settings { + my $fm = shift; + my $q = $fm->{'cgi'}; + + $db->set_prop('squidguard', 'status', $q->param('url_filter_status')); + $db->set_prop('squidclamav', 'status', $q->param('av_filter_status')); + + my $squid = $db->get('squid') || die "Couldn't find squid service in configuration DB\n"; + my $squidstatus = $squid->prop('status') || 'disabled'; + + # If either squidguard or havp is enabled, squid needs to be enabled too + if ((($q->param('url_filter_status') eq 'enabled') || ($q->param('av_filter_status') eq 'enabled')) && + ($squidstatus ne 'enabled')){ + $db->set_prop('squid', 'status', 'enabled'); + $fm->error('ERROR') unless (system ("/sbin/e-smith/signal-event proxy-update") == 0 ); + } + + $db->set_prop('squidguard', 'BlockedCategories', join(',', $q->param('blockedCategories'))); + my $ip = $q->param('unrestricted'); + $ip =~ s/\r?\n/,/g; + $db->set_prop('squidguard', 'UnrestrictedIP', $ip); + + # Split domains and URL + # as squidguard wants them in their own file + my %list; + $list{black_domains} = [ grep {$_ !~ m|/|} split(/\r?\n/, $q->param('black')) ]; + $list{black_urls} = [ grep {$_ =~ m|/|} split(/\r?\n/, $q->param('black')) ]; + $list{white_domains} = [ grep {$_ !~ m|/|} split(/\r?\n/, $q->param('white')) ]; + $list{white_urls} = [ grep {$_ =~ m|/|} split(/\r?\n/, $q->param('white')) ]; + + foreach (qw{black_domains black_urls white_domains white_urls}){ + my $file = $_; + my $bl = $file; + $file =~ s!_!/!; + open FILE, ">/var/squidGuard/blacklists/$file" || die "Couldn't open $file: $!\n"; + foreach (@{$list{$bl}}){ + $_ =~ s|https?://||g; + print FILE $_."\n"; + } + close FILE; + } + # Write whitelist for squidclamav + open FILE, ">/etc/squid/clamav_whitelist" || die "Couldn't open /etc/squid/clamav_whitelist: $!\n"; + foreach (@{$list{white_domains}},@{$list{white_urls}}){ + $_ =~ s|https?://||g; + $_ =~ s|^(.*)|whitelist\ \.$1|g; + $_ =~ s|\.|\\\.|g; + print FILE $_."\n"; + } + close FILE; + + unless (system ("/sbin/e-smith/signal-event http-proxy-update") == 0 ){ + $fm->error('ERROR'); + } + + $fm->success('SUCCESS'); +} + +sub valid_ip_list{ + my ($fm,$text) = @_; + foreach (split /\r?\n/, $text){ + return $fm->localise('NOT_A_VALID_IP_LIST') unless + (valid_ip_or_range($fm,$_) eq 'OK' or $_ eq ''); + } + return 'OK' +} + +sub valid_ip_or_range{ + my ($fm,$entry) = @_; + if ($entry =~ m/^\d+\.\d+\.\d+\.\d+$/){ + return CGI::FormMagick::Validator::ip_number($fm, $entry) + } + elsif ($entry =~ m/^(\d+\.\d+\.\d+\.\d+)[\/\-](\d+\.\d+\.\d+\.\d+)$/){ + return 'OK' if (CGI::FormMagick::Validator::ip_number($fm, $1) eq 'OK' && + CGI::FormMagick::Validator::ip_number($fm, $2) eq 'OK'); + } + elsif ($entry =~ m/^(\d+\.\d+\.\d+\.\d+)\/(\d{1,2})$/){ + return 'OK' if (CGI::FormMagick::Validator::ip_number($fm, $1) eq 'OK' && + $2 < 32 && + $2 > 1); + } + return $fm->localise('NOT_A_VALID_IP_OR_RANGE'); +} + + +1; + diff --git a/root/usr/share/squidGuard/cgi-bin/blocked.cgi b/root/usr/share/squidGuard/cgi-bin/blocked.cgi new file mode 100755 index 0000000..83ffd3e --- /dev/null +++ b/root/usr/share/squidGuard/cgi-bin/blocked.cgi @@ -0,0 +1,390 @@ +#! /usr/bin/perl +# +# Explain to the user that the URL is blocked and by which rule set +# +# Original by Pl Baltzersen 1999 (pal.baltzersen@ost.eltele.no) +# French texts thanks to Fabrice Prigent (fabrice.prigent@univ-tlse1.fr) +# Dutch texts thanks to Anneke Sicherer-Roetman (sicherer@sichemsoft.nl) +# German texts thanks to Buergernetz Pfaffenhofen (http://www.bn-paf.de/filter/) +# Spanish texts thanks to Samuel García). +# Rewrite by Christine Kronberg, 2008, to enable an easier integration of +# other languages. +# + +# By accepting this notice, you agree to be bound by the following +# agreements: +# +# This software product, squidGuard, is copyrighted (C) 1998-2008 +# by Christine Kronberg, Shalla Secure Services. All rights reserved. +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License (version 2) as +# published by the Free Software Foundation. It is distributed in the +# hope that it will be useful, but WITHOUT ANY WARRANTY; without even +# the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR +# PURPOSE. See the GNU General Public License (GPL) for more details. +# +# You should have received a copy of the GNU General Public License +# (GPL) along with this program. + +use strict; +use Socket; +# +# GLOBAL VALUES: +# +my ($clientaddr,$clientname,$clientuser,$clientgroup,$targetgroup,$url); +my @supported; +my $lang="en"; +my (%msgconf,%title,%logo,%msg,%tab,%word); +my ($protocol,$address,$port,$path,$refererhost,$referer); +my %Babel = (); +my $rechts=""; +my $links=""; +my $dummy=""; +sub getpreferedlang(@); +sub parsequery($); +sub status($); +sub redirect($); +sub content($); +sub expires($); +sub msg($$); +sub gethostnames($); +sub spliturl($); +sub showhtml($); +sub showimage($$$); +sub showinaddr($$$$$); + +# +# CONFIGURABLE OPTIONS: +# +# (Currently: "en", "fr", "de", "es", "nl", "no") +@supported = ( + "en (English), ", + "fr (Français), ", + "de (Deutsch), ", + "es (Español), ", + "nl (Nederlands), ", + "no (Norsk)." + ); + +# Read external conf file +open CONF, '../conf.txt' || die "Couldn't open conf file\n"; +my %conf; +while (){ + next if ($_ =~ m/^#/ or $_ !~ /=/); + chomp; + my ($key,$value) = split(/\s*=\s*/,$_); + $conf{$key} = $value; +} +close CONF; + +######################################################################################## +# +# SUBROUTINES: +# + +# +# RETURN THE FIRST SUPPORTED LANGUAGE OF THE BROWSERS PREFERRED OR THE +# DEFAULT: +# +sub getpreferedlang(@) { + my @supported = @_; + my @languages = split(/\s*,\s*/,$ENV{"HTTP_ACCEPT_LANGUAGE"}) if(defined($ENV{"HTTP_ACCEPT_LANGUAGE"})); + my $lang; + my $supp; + push(@languages,$supported[0]); + for $lang (@languages) { + $lang =~ s/\s.*//; + $lang = substr($lang,0,2); + for $supp (@supported) { + $supp =~ s/\s.*//; + return($lang) if ($lang eq $supp); + } + } +} + +# +# PARSE THE QUERY_STRING FOR KNOWN KEYS: +# +sub parsequery($) { + my $query = shift; + my $clientaddr = "$Babel{Unknown}"; + my $clientname = "$Babel{Unknown}"; + my $clientuser = "$Babel{Unknown}"; + my $clientgroup = "$Babel{Unknown}"; + my $targetgroup = "$Babel{Unknown}"; + my $url = "$Babel{Unknown}"; + my $virus = "$Babel{Unknown}"; + my $user = "$Babel{Unknown}"; + my $source = "$Babel{Unknown}"; + if (defined($query)) { + while ($query =~ /^\&?([^\&=]+)=\"([^\"]*)\"(.*)/ || $query =~ /^\&?([^\&=]+)=([^\&=]*)(.*)/) { + my $key = $1; + my $value = $2; + $value = "$Babel{Unknown}" unless(defined($value) && $value && $value ne "unknown"); + $query = $3; + if ($key =~ /^(clientaddr|clientname|clientuser|clientgroup|targetgroup|url|virus|source|user)$/) { + eval "\$$key = \$value"; + } + if ($query =~ /^url=(.*)/) { + $url = $1; + last; + } + } + } + $source =~ s/\/\-$//; + $virus =~ s/\+/\ /g; + $virus =~ s/FOUND//; + $virus =~ s/stream/virus/; + $clientaddr = $source if ($source ne $Babel{Unknown}); + $targetgroup = $virus if ($virus ne $Babel{Unknown}); + $clientuser = $user if ($user ne $Babel{Unknown}); + return($clientaddr,$clientname,$clientuser,$clientgroup,$targetgroup,$url); +} + +# +# PRINT HTTP STATUS HEARER: +# +sub status($) { + my $status = shift; + print "Status: $status\n"; +} + +# +# PRINT HTTP LOCATION HEARER: +# +sub redirect($) { + my $location = shift; + print "Location: $location\n"; +} + +# +# PRINT HTTP CONTENT-TYPE HEARER: +# +sub content($) { + my $contenttype = shift; + print "Content-Type: $contenttype\n"; +} + +# +# PRINT HTTP LAST-MODIFIED AND EXPIRES HEARER: +# +sub expires($) { + my $ttl = shift; + my $time = time; + my @day = ("Sun","Mon","Tue","Wed","Thu","Fri","Sat"); + my @month = ("Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec"); + my ($sec,$min,$hour,$mday,$mon,$year,$wday) = gmtime($time); + printf "Last-Modified: %s, %d %s %d", $day[$wday],$mday,$month[$mon],$year+1900; + printf " %02d:%02d:%02d GMT\n", $hour,$min,$sec; + ($sec,$min,$hour,$mday,$mon,$year,$wday) = gmtime($time+$ttl); + printf "Expires: %s, %d %s %d", $day[$wday],$mday,$month[$mon],$year+1900; + printf " %02d:%02d:%02d GMT\n", $hour,$min,$sec; +} + +# +# REVERSE LOOKUP AND RETURN NAMES: +# +sub gethostnames($) { + my $address = shift; + my ($name,$aliases) = gethostbyaddr(inet_aton($address), AF_INET); + my @names; + if (defined($name)) { + push(@names,$name); + if (defined($aliases) && $aliases) { + for(split(/\s+/,$aliases)) { + next unless(/\./); + push(@names,$_); + } + } + } + return(@names); +} + +# +# SPLIT AN URL INTO PROTOCOL, ADDRESS, PORT AND PATH: +# +sub spliturl($) { + my $url = shift; + my $protocol = ""; + my $address = ""; + my $port = ""; + my $path = ""; + $url =~ /^([^\/:]+):\/\/([^\/:]+)(:\d*)?(.*)/; + $protocol = $1 if(defined($1)); + $address = $2 if(defined($2)); + $port = $3 if(defined($3)); + $path = $4 if(defined($4)); + return($protocol,$address,$port,$path); +} + +# +# SEND OUT AN IMAGE: +# +sub showimage($$$) { + my ($type,$file,$redirect) = @_; + content("image/$type"); + expires(300); + redirect($redirect) if($redirect); + print "\n"; + open(GIF, "$file"); + print ; + close(GIF) +} + +# +# SHOW THE INADDR ALERNATIVES WITH OPTIONAL ATOREDIRECT: +# +sub showinaddr($$$$$) { + my ($targetgroup,$protocol,$address,$port,$path) = @_; + my $msgid = $targetgroup; + my @names = gethostnames($address); + if($conf{autoinaddr} == 2 && @names || $conf{autoinaddr} && @names==1) { + status("301 Moved Permanently"); + redirect("$protocol://$names[0]$port$path"); + } elsif (@names>1) { + status("300 Multiple Choices"); + } elsif (@names) { + status("301 Moved Permanently"); + } else { + status("404 Not Found"); + } + if (@names) { + print "Content-type: text/html\n\n"; + print "\n"; + print "\n"; + print "$Babel{Title}\n"; + print "\n"; + print " \n"; + expires(0); + $msgid = "in-addr" unless(defined($msgconf{$msgid})); + if (defined($msgconf{$msgid})) { + print " \n"; + for (@{$msgconf{$msgid}}) { + my @config = split(/:/); + my $type = shift(@config); + if ($type eq "msg") { + msg($config[0],$config[1]); + } elsif ($type eq "tab") { + table(shift(@config),shift(@config),@config); + } elsif ($type eq "alternatives") { + print " \n"; + for (@names) { + print " \n \n \n"; + } + print "
\n "; + href("$protocol://$_$port$path"); + print "\n \n
\n\n"; + if (defined($ENV{"HTTP_REFERER"}) && $ENV{"HTTP_REFERER"} =~ /:\/\/([^\/:]+)/) { + $refererhost = $1; + $referer = $ENV{"HTTP_REFERER"}; + msg("H4","referermaster"); + } + } + } + } + } + return; +} + + +######################################################################################## +# +# MAIN PROGRAM +# +# To change the messages in the blocked page please refer to the corresponding babel file. +# +$lang = getpreferedlang(@supported); + +open (BABEL, "../lang/babel.$lang") || warn "Unable to open language file: $!\n"; +flock (BABEL, 2); + while () { + chomp $_ ; + ($links, $rechts) = split (/=/, $_); + $Babel{$links} = $rechts; + } +flock (BABEL, 8); +close (BABEL); + +($clientaddr,$clientname,$clientuser,$clientgroup,$targetgroup,$url) = parsequery($ENV{"QUERY_STRING"}); +($protocol,$address,$port,$path) = spliturl($url); + +if ($url =~ /\.(gif|jpg|jpeg|png|mp3|mpg|mpeg|avi|mov)$/i) { + status("403 Forbidden"); + showimage("gif",$conf{image},$conf{redirect}); + exit 0; +} +if ($targetgroup eq "in-addr") { + showinaddr($targetgroup,$protocol,$address,$port,$path); +} + +status("403 Forbidden"); +expires(0); +print "Content-type: text/html\n\n"; +print "\n"; +print "\n"; +print "$Babel{Title}\n"; +print "\n"; +print " \n"; + +print "\n"; +print "\n"; +print "\"\"\n"; +print "\n"; +print "\"\"

\n"; +print "
\n"; +print "\n"; +print "\n"; +print "
\n"; + +print "

$Babel{Msg}

\n"; +print "

\n"; + +print "$Babel{Tabcaption}

\n"; + +print "\n"; +print "\n"; +print "\n"; +print "\n"; + +print "\n"; +print "\n"; +print "\n"; + +print "\n"; +print "\n"; +print "\n"; + +print "\n"; +print "\n"; +print "\n"; + +print "\n"; +print "\n"; +print "\n"; + +print "\n"; +print "\n"; +print "\n"; +print "
$Babel{TabIP} $clientaddr
$Babel{Tabclientname} $clientname
$Babel{Tabclientuser} $clientuser
$Babel{Tabclientgroup} $clientgroup
$Babel{Taburl} $url
$Babel{Tabtargetgroup} $targetgroup
\n"; +print "

\n"; + +print "
\n"; +if ($targetgroup eq "in-addr") { + print "$Babel{msginaddr}

\n"; + print "$Babel{msgnoalternatives} ",$address,".
\n"; + print "$Babel{msgwebmaster}\n"; +} +print "

\n"; +print "$Babel{msgproxymaster} $conf{proxymaster}.
\n"; +print "$Babel{msgrefresh}\n"; + +print "
\n"; + +# bottom of page +print "
\n"; +print "\n"; + + + +exit 0; diff --git a/root/usr/share/squidGuard/images/blocked.gif b/root/usr/share/squidGuard/images/blocked.gif new file mode 100644 index 0000000..10dfa18 Binary files /dev/null and b/root/usr/share/squidGuard/images/blocked.gif differ diff --git a/root/usr/share/squidGuard/images/empty.gif b/root/usr/share/squidGuard/images/empty.gif new file mode 100644 index 0000000..82e69eb Binary files /dev/null and b/root/usr/share/squidGuard/images/empty.gif differ diff --git a/root/usr/share/squidGuard/lang/babel.de b/root/usr/share/squidGuard/lang/babel.de new file mode 100644 index 0000000..da5903f --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.de @@ -0,0 +1,20 @@ +Unknown=unbekannt +Title=403 Verboten +Msg=Der Zugriff auf die Seite ist nicht erlaubt. +Tabclientname=Rechnername +Tabcaption=Zusatzinformationen: +TabIP=IP-Adresse +Tabclientuser=Benutzer +Tabclientgroup=Gruppe +Taburl=URL +Tabtargetgroup=Kategorie +msgproxymaster=Falls ein Fehler vorliegt schicken Sie die Adresse dieser Seite bitte an +msgrefresh=Nach einer Änderung der Zugriffsrechte müssen Sie evtl. die Seite mit dem <Aktualisieren> bzw. <Neu laden> Button des Browsers oder mit <Strg>+<F5> erneut laden lassen. +msgtimerefresh=Nach dem Wechsel in eine erlaubte Zeitperiode müssen Sie evtl. die Seite mit dem <Aktualisieren> bzw. <Neu laden> Button des Browsers oder sogar mit <Strg>+<F5> erneut laden lassen. +msgunknown=Zugriff verweigert, da Ihr Rechner bei $proxy unbekannt ist. +msginaddr=Die direkte Verwendung von IP-Adressen ist von diesem Rechner aufgrund der geltenden Netzwerk Zugriffregelungen nicht erlaubt. +msgalternatives=Die folgenden Alternativen wurden gefunden: +msgnoalternatives=Für diesen Server konnte kein alternativer Domainname gefunden werden: +msgreferermaster=Bitte erfragen Sie den korrekten Domainnamen von dem Webmaster dieses Servers. +msgwebmaster=Bitte fragen Sie den Webmaster von dieses Servers nach einem Domainnamen für den Server. +msgdeflang=Dieser Text erscheint in Deutsch, da Ihr Browser dies als bevorzugte (erste) Sprache einstellt hat, die unterstützt werden. Unterstützte Sprachen: diff --git a/root/usr/share/squidGuard/lang/babel.en b/root/usr/share/squidGuard/lang/babel.en new file mode 100644 index 0000000..1b13cd2 --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.en @@ -0,0 +1,20 @@ +Unknown=unknown +Title=403 Forbidden +Msg=The access to this site is blocked. +Tabclientname=Client name +Tabcaption=Additional information: +TabIP=Client address +Tabclientuser=Client user +Tabclientgroup=Client group +Taburl=URL +Tabtargetgroup=Target group +msgproxymaster=If you think this is an error, send this page to +msgrefresh=You may need to use the browser's <Reload> button or <Keyboard Shift>+<Browser Reload> to get rid of this page after an access rule change. +msgtimerefresh=You may need to use the browser's <Reload> button or even <Keyboard Shift>+<Browser Reload> to get rid of this page after transition from a time zone with access restrictions. +msgunknown=Access denied because your clienten is unknown to $proxy. +msginaddr=Surfing on plain IP-addresses is denied from this client due to network access policies. +msgalternatives=The following possible alternatives were found: +msgnoalternatives=No alternative domainname were found for the server +msgreferermaster=Send complaints to the webmaster of referer and ask him to correct the link(s) that points to $url in referer with the supposedly correct alternative above. +msgwebmaster=Please ask the webmaster of that server for the correct domainname. +msgdeflang=This message is in English because either your browser has "en" listed first in your prefered language list for those languages supported by this program or the chosen language is not supported by this program. Supported languages are: diff --git a/root/usr/share/squidGuard/lang/babel.es b/root/usr/share/squidGuard/lang/babel.es new file mode 100644 index 0000000..9b47be1 --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.es @@ -0,0 +1,20 @@ +Unknown=desconocido +Title=403 Restringido +Msg=Acceso a este sitio restringido +Tabclientname=Nombre del cliente +Tabcaption=Información adicional: +TabIP=Dirección IP del cliente +Tabclientuser=Usuario del cliente +Tabclientgroup=Grupo del cliente +Taburl=URL +Tabtargetgroup=Clasificación del destino +msgproxymaster=Si piensa que esto es incorrecto, manda esta página a +msgrefresh=Puede que necesitas usar el botón <Refrescar> o <CONTROL>+<F5> para refrescar el contenido de esta página. +msgtimerefresh=Puede que necesitas usar el botón <Refrescar> o <CONTROL>+<F5> para refrescar el contenido de esta página si el bloqueo es debido a una restricción basada en la hora de acceso. +msgunknown=Acceso denegado porque cliente es desconocido para proxy. +msginaddr=La navegación usando direcciones IP está restringida para este cliente por motivos de seguridad. +msgalternatives=Las siguientes posibles alternativas han sido encontradas: +msgnoalternatives=No han sido encontradas alternativas para el acceso a +msgreferermaster=Envíe sus sugerencias al webmaster de referer y pregúntele cómo corregir los lings que apuntan a url en referer con las anteriores alternativas supuestamente correctas. +msgwebmaster=Envíe sus sugerencias al webmaster para url y pregunte por un nombre de dominio para el servidor. +msgdeflang=Este mensaje está en español porque es el primero de los lenguajes soportados que están configurados en tu servidor para ser usado en la navegación. Los lenguajes soportados son: diff --git a/root/usr/share/squidGuard/lang/babel.fr b/root/usr/share/squidGuard/lang/babel.fr new file mode 100644 index 0000000..7d4173a --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.fr @@ -0,0 +1,20 @@ +Unknown=inconnu +Title=403 Interdit +Msg=L'accés à ce site est bloqué. +Tabclientname=Nom de la machine +Tabcaption=Information complémentaire: +TabIP=Adresse de la machine +Tabclientuser=Utilisateur +Tabclientgroup=Groupe +Taburl=URL +Tabtargetgroup=Groupe cible +msgproxymaster=Si vous pensez qu'il s'agit d'une erreur, contactez votre administrateur +msgrefresh=Vous avez peut-être besoin d'utiliser le bouton <Recharger> ou même <Shift>+<Recharger> après un changement de règles. +msgtimerefresh=Vous avez peut-être besoin d'utiliser le bouton <Recharger> ou même <Shift>+<Recharger> après un changement de zone temporelle d\'interdiction. +msgunknown=Accès interdit car votre client est inconnu de proxy. +msginaddr=Naviguer sur des adresses IP est refusé à cette machine pour des raisons de sécurité. +msgalternatives=Les alternatives suivantes sont possibles: +msgnoalternatives=Aucun nom de domaine alternatif n'a été trouvé pour le serveur +msgreferermaster=Envoyez les demandes au webmaster de le serveur et demandez lui corriger les liens qui pointent sur url dans referer avec l'alternative (supposée correcte) suivante. +msgwebmaster=Envoyez les demandes au webmaster pour url et demandez un nom de domaine pour le serveur. +msgdeflang=Ce message est en français car "fr" est la première langue supportée parmi celles que votre navigateur signale comme préférée. Les langues supportées sont: diff --git a/root/usr/share/squidGuard/lang/babel.nl b/root/usr/share/squidGuard/lang/babel.nl new file mode 100644 index 0000000..4b61169 --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.nl @@ -0,0 +1,20 @@ +Unknown=onbekend +Title=403 Verboden +Msg=De toegang is geblokkeerd. +Tabclientname=Computernaam +Tabcaption=Extra informatie: +TabIP=Computeradres +Tabclientuser=Gebruiker +Tabclientgroup=Groep +Taburl=URL +Tabtargetgroup=Doelgroep +msgproxymaster=Als u denkt dat dit onjuist is, zend deze bladzijde aan +msgrefresh=U moet waarschijnlijk de browser's <Reload> knop gebruiken of zelfs <Shift>+<Reload> na een verandering in de squidGuard regels. +msgtimerefresh=U moet waarschijnlijk de browser's <Reload> knop gebruiken of zelfs <Shift>+<Reload> na beeindiging van een periode met beperkingen. +msgunknown=Toegand geweigerd omdat uw client niet bekend is bij proxy. +msginaddr=Surfen naar harde IP adressen wordt op deze client geweigerd om veiligheidsredenen. +msgalternatives=De volgende alternatieven zijn mogelijk: +msgnoalternatives=Geen alternatieve domeinnaam gevonden voor de server. +msgreferermaster=Zend klachten aan webmaster de referer en vraag deze de link te verbeteren die verwijst naar url op referer met het waarschijnlijk correcte alternatief. +msgwebmaster=Stuur klachten aan de webmaster voor de address en vraag om een domeinnaam voor de server. +msgdeflang=Deze melding is in het Nederlands want "nl" is de eerst ondersteunde taal van de talen die uw browser ondersteunt. De ondersteunde talen zijn: diff --git a/root/usr/share/squidGuard/lang/babel.no b/root/usr/share/squidGuard/lang/babel.no new file mode 100644 index 0000000..7166cb8 --- /dev/null +++ b/root/usr/share/squidGuard/lang/babel.no @@ -0,0 +1,20 @@ +Unknown=ukjent +Title=403 Sperret +Msg=Siden er sperret. +Tabclientname=Klientnavn +Tabcaption=Tilleggsinformasjon: +TabIP=Klientadresse +Tabclientuser=Brukerident +Tabclientgroup=Klientgruppe +Taburl=URL +Tabtargetgroup=Målkategori +msgproxymaster=Om du mener dette er feil, så send denne siden til +msgrefresh=Du kan trenge å bruke browserens <Reload> knapp eller til og med <Tastatur Shift>+<Browser Reload> for å bli kvitt denne siden etter endring i adgangskontrollen. +msgtimerefresh=Du kan trenge å bruke browserens <Reload> knapp eller til og med <Tastatur Shift>+<Browser Reload> for å bli kvitt denne siden ved overgang fra et tidsrom med sperring. +msgunknown=Adgang nektes fordi denne klienten ikke er definert på proxy. +msginaddr=Av sikkerhetsgrunner er surfing på IP-adressen ikke tillatt fra denne klienten. +msgalternatives=Følgende mulige alternativer ble funnet: +msgnoalternatives=Finner ingen alternative domenenavn for serveren +msgreferermaster=Send evt. klager til webmaster for referer og be ham rette linken(e) som peker til url i referer med det antatt korrekte alternativet over. +msgwebmaster=Send evt. klager til webmaster for address og anmod om å få knyttet serveren til et domenenavn. +msgdeflang=Denne meldingen er på norsk ford "no" er det første støttede sproget av de din nettleser er satt opp til å rapportere som foretrukket. Støttede sprog er: diff --git a/root/var/service/squid-db-logd/log/run b/root/var/service/squid-db-logd/log/run new file mode 100644 index 0000000..15ed0d0 --- /dev/null +++ b/root/var/service/squid-db-logd/log/run @@ -0,0 +1,7 @@ +#!/bin/sh + +exec \ + /usr/local/bin/setuidgid smelog \ + /usr/local/bin/multilog t s5000000 \ + /var/log/squid-db-logd + diff --git a/root/var/service/squid-db-logd/run b/root/var/service/squid-db-logd/run new file mode 100644 index 0000000..d00475f --- /dev/null +++ b/root/var/service/squid-db-logd/run @@ -0,0 +1,34 @@ +#!/usr/bin/perl -w + +use esmith::ConfigDB; +my $c = esmith::ConfigDB->open_ro or die "Couldn't open ConfigDB\n"; +my $rec = $c->get('squid-db-logd'); +my $dbname = $rec->prop('DbName') || 'squid_log'; +my $dbuser = $rec->prop('DbUser') || 'squid'; +my $dbpass = $rec->prop('DbPassword') || 'squid'; +my $dbhost = $rec->prop('DbHost') || 'localhost'; + +open(STDERR, ">&STDOUT"); + +my @args = ("--debug=1", "--dbname=$dbname", "--dbuser=$dbuser", "--dbpass=$dbpass"); +push @args, "--dbhost=$dbhost" if ($dbhost ne 'localhost'); + +my $squid = $c->get('squid'); +my $squidstatus = $squid->prop('status') || 'disabled'; + +if ($squidstatus ne 'enabled'){ + exec("sv", "d", "/service/squid-db-logd"); + exit(0); +} + +my $squidguard = $c->get('squidguard'); +my $squidguardstatus = $squidguard->prop('status') || 'disabled'; + +if ($squidguardstatus eq 'enabled'){ + push @args, "--squidguard"; +} + +exec("/usr/local/bin/setuidgid", "squid", "/usr/bin/squid-db-logd", @args) + or die "Cannot run the Squid Database Loggind Daemon"; + +exit(1); diff --git a/smeserver-webfilter.spec b/smeserver-webfilter.spec new file mode 100644 index 0000000..1c6dce9 --- /dev/null +++ b/smeserver-webfilter.spec @@ -0,0 +1,187 @@ +%define version 0.2.16 +%define release 7 +%define name smeserver-webfilter + + +Summary: web filtering proxy for SME Server +Name: %{name} +Version: %{version} +Release: %{release}%{?dist} +Epoch: 9 +License: GPL +Group: Networking/Daemons +Source: %{name}-%{version}.tar.xz + +BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot +BuildArchitectures: noarch +BuildRequires: e-smith-devtools + +Requires: squidGuard >= 1.4 +Requires: squidclamav +Requires: perl(File::Tail) +Requires: perl(Getopt::Long) +Requires: perl(DBI) +Requires: perl(URI) +Requires: e-smith-apache >= 2.6.0-19 +Requires: smeserver-php >= 3.0.0-43 + +Obsoletes: smeserver-squidguard +Provides: smeserver-squidguard +AutoReqProv: no + + +%description +Web proxy filtering based on squidguard and squidclamav + + +%changelog +* Sat Sep 07 2024 cvs2git.sh aka Brian Read 0.2.16-7.sme +- Roll up patches and move to git repo [SME: 12338] + +* Sat Sep 07 2024 BogusDateBot +- Eliminated rpmbuild "bogus date" warnings due to inconsistent weekday, + by assuming the date is correct and changing the weekday. + +* Fri Sep 06 2024 Terry Fage 0.2.16-6.sme +- apply locale 2024-09-06.patch + +* Fri Nov 11 2022 Jean-Philippe Pialasse 0.2.16-5.sme +- apply locale 2022-11-11 patch + +* Sat Aug 13 2022 Brian Read 0.2.16-4.sme +- Update creatlinks for systemd and fix capitalisation of squidGuard in config db [SME: 11978] +- Add in DB entries for transparent-proxying + +* Thu Aug 04 2022 Brian Read 0.2.16-3.sme +- update to httpd 2.4 syntax [SME: 12065] +- Thanks to Zsolt Vasarhelyi +- Add ---ignoredirs directive to fix Transaction check error + +* Wed May 25 2022 Jean-Philippe Pialasse 0.2.16-2.sme +- import to SME 10 and Koozali buildsys [SME: 11978] + +* Thu Nov 19 2015 Daniel Berteaud 0.2.16-1 +- Add pt-br localization (by Jáder Marasca) + +* Fri May 15 2015 Daniel Berteaud 0.2.15-1 +- Add Danish localization (by Jan B Thygesen) + +* Wed Jun 25 2014 Daniel Berteaud 0.2.14-1 +- fix cleanup cronjob on EL6 +- Pre-create log files to prevent warnings + +* Tue Nov 12 2013 Daniel Berteaud 0.2.13-1 +- New branch for SME9 + +* Fri Sep 6 2013 Daniel Berteaud 0.2.12-1 +- Correctly handle more than two unrestricted IP or network + +* Wed Jan 23 2013 Daniel Berteaud 0.2.11-1 +- It's now possible to log on a remote MySQL server + +* Wed Oct 24 2012 Daniel Berteaud 0.2.10-1 +- Don't rotate tables, just purge old entries + +* Wed Oct 24 2012 Daniel Berteaud 0.2.9-1 +- Handle error:unsupported-request-method in squid logs + +* Wed Oct 24 2012 Daniel Berteaud 0.2.8-1 +- Add it locale for the panel, thanks to Nicola Tiana + +* Mon Oct 22 2012 Daniel Berteaud 0.2.7-1 +- Use UTF-8 for de locale file + +* Mon Oct 22 2012 Daniel Berteaud 0.2.6-1 +- Add de locale to the panel, thanks to Daniel Schiffer + +* Fri Oct 19 2012 Daniel Berteaud 0.2.5-1 +- Fix processing of denied CONNECT in squidGuard logs +- Properly escape domain names + +* Fri Oct 19 2012 Daniel Berteaud 0.2.4-1 +- Use larger varchar for URL and domain names + +* Thu Oct 18 2012 Daniel Berteaud 0.2.3-1 +- Optimize database inserts +- Log stderr to stdout in squid-db-logd run script +- Add missing dbuser option in squid-db-logd + +* Wed Oct 17 2012 Daniel Berteaud 0.2.2-1 +- Fix processing CONNECT lines + +* Sun Oct 14 2012 Daniel Berteaud 0.2.1-1 +- Ignore stats requests from squidclient + +* Sun Oct 7 2012 Daniel Berteaud 0.2.0-1 +- Include Squid Database Logging Daemon (squid-db-logd) + +* Sun Oct 7 2012 Daniel Berteaud 0.1.4-1 +- Fix hidding disabled caegories + +* Tue Sep 11 2012 Daniel Berteaud 0.1.3-1 +- Add whitelists to squidclamav + +* Mon Aug 27 2012 Daniel Berteaud 0.1.2-1 +- Fix en-us locale (label AV Filtering) + +* Fri Jul 6 2012 Daniel Berteaud 0.1.1-1 +- Spawn more redirect children + +* Mon Apr 16 2012 Daniel Berteaud 0.1.0-1 +- Rename to smeserver-webfilter +- Add AV filtering with squidclamav +- Simplified panel +- Log cron job to dev null +- Use quiet rsync arg + +* Tue Apr 03 2012 Daniel Berteaud 0.1.2-1 +- Fix ownership of log files + +* Tue Mar 27 2012 Daniel Berteaud 0.1.1-1 +- Add .log suffix to log files + +* Tue Mar 27 2012 Daniel Berteaud 0.1.0-1 +- Move to git + +* Tue Feb 21 2012 Daniel Berteaud 0.1-1 +- initial release + +%prep +%setup -q -n %{name}-%{version} + +%build +%{__mkdir_p} root/var/log/squid-db-logd +perl createlinks + +%install +/bin/rm -rf $RPM_BUILD_ROOT +(cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT) +/bin/rm -f %{name}-%{version}-filelist +/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ + --dir /var/squidGuard/blacklists 'attr(0750,squid,squid)' \ + --dir /var/log/squid-db-logd 'attr(0770,smelog,smelog)' \ + --file /usr/bin/squid-db-logd 'attr(0755,root,root)' \ + --file /var/service/squid-db-logd/run 'attr(0755,root,root)' \ + --file /var/service/squid-db-logd/log/run 'attr(0755,root,root)' \ + --file /var/squidGuard/blacklists/black/domains 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/black/urls 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/white/domains 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/squidGuard/blacklists/white/urls 'attr(0640,squid,squid) %config(noreplace)' \ + --file /etc/cron.daily/squid-db-cleanup 'attr(0755,root,root)' \ + --ignoredir "/var/log/squidGuard" \ + --file /var/log/squidGuard/deny.log 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/log/squidGuard/white.log 'attr(0640,squid,squid) %config(noreplace)' \ + --file /var/log/squidGuard/squidGuard.log 'attr(0640,squid,squid) %config(noreplace)' \ + > %{name}-%{version}-filelist + +echo "%doc CHANGELOG.git" >> %{name}-%{version}-filelist +echo "%doc squid_log.sql" >> %{name}-%{version}-filelist +%files -f %{name}-%{version}-filelist +%defattr(-,root,root) + +%clean +rm -rf $RPM_BUILD_ROOT + +%post +%preun +