1 |
unnilennium |
1.1 |
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header |
2 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header 1969-12-31 19:00:00.000000000 -0500 |
3 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header 2016-05-26 03:19:40.604000000 -0400 |
4 |
|
|
@@ -0,0 +1,11 @@ |
5 |
|
|
+# DansGuardian config file for version 2.10.1.1 |
6 |
|
|
+ |
7 |
|
|
+# **NOTE** as of version 2.7.5 most of the list files are now in dansguardianf1.conf |
8 |
|
|
+{ |
9 |
|
|
+ use esmith::config; |
10 |
|
|
+ use esmith::db; |
11 |
|
|
+ our %conf; |
12 |
|
|
+ tie %conf, 'esmith::config'; |
13 |
|
|
+ our %dungog; |
14 |
|
|
+ tie %dungog, 'esmith::config', '/home/e-smith/db/dungog'; |
15 |
|
|
+} |
16 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel |
17 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel 1969-12-31 19:00:00.000000000 -0500 |
18 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel 2016-05-26 03:47:07.122000000 -0400 |
19 |
|
|
@@ -0,0 +1,12 @@ |
20 |
|
|
+# Web Access Denied Reporting (does not affect logging) |
21 |
|
|
+# |
22 |
|
|
+# -1 = log, but do not block - Stealth mode |
23 |
|
|
+# 0 = just say 'Access Denied' |
24 |
|
|
+# 1 = report why but not what denied phrase |
25 |
|
|
+# 2 = report fully |
26 |
|
|
+# 3 = use HTML template file (accessdeniedaddress ignored) - recommended |
27 |
|
|
+# |
28 |
|
|
+{ |
29 |
|
|
+ my $reportinglevel = db_get_prop(\%dungog, 'dansguardian', "reportinglevel") || '1'; |
30 |
|
|
+ $OUT = "reportinglevel = $reportinglevel\n"; |
31 |
|
|
+} |
32 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir |
33 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir 1969-12-31 19:00:00.000000000 -0500 |
34 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir 2016-05-25 13:14:48.000000000 -0400 |
35 |
|
|
@@ -0,0 +1,9 @@ |
36 |
|
|
+# Language dir where languages are stored for internationalisation. |
37 |
|
|
+# The HTML template within this dir is only used when reportinglevel |
38 |
|
|
+# is set to 3. When used, DansGuardian will display the HTML file instead of |
39 |
|
|
+# using the perl cgi script. This option is faster, cleaner |
40 |
|
|
+# and easier to customise the access denied page. |
41 |
|
|
+# The language file is used no matter what setting however. |
42 |
|
|
+# |
43 |
|
|
+languagedir = '/usr/share/dansguardian/languages' |
44 |
|
|
+ |
45 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language |
46 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language 1969-12-31 19:00:00.000000000 -0500 |
47 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language 2016-05-26 04:21:50.518000000 -0400 |
48 |
|
|
@@ -0,0 +1,11 @@ |
49 |
|
|
+# language to use from languagedir. |
50 |
|
|
+language = 'ukenglish' |
51 |
|
|
+{ |
52 |
|
|
+ my $language = db_get_prop(\%dungog, 'dansguardian', "language") || 'ukenglish'; |
53 |
|
|
+ $OUT = "language = '$language'\n"; |
54 |
|
|
+ if (-e "/etc/dansguardian/languages/$language/templatef0.html") |
55 |
|
|
+ { |
56 |
|
|
+ $OUT .= "htmltemplate = templatef0.html\n"; |
57 |
|
|
+ } |
58 |
|
|
+} |
59 |
|
|
+ |
60 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings |
61 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings 1969-12-31 19:00:00.000000000 -0500 |
62 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings 2016-05-26 04:16:59.629000000 -0400 |
63 |
|
|
@@ -0,0 +1,55 @@ |
64 |
|
|
+# Logging Settings |
65 |
|
|
+# |
66 |
|
|
+# 0 = none 1 = just denied 2 = all text based 3 = all requests |
67 |
|
|
+{ |
68 |
|
|
+ my $loglevel = db_get_prop(\%dungog, 'dansguardian', "loglevel") || '2'; |
69 |
|
|
+ $OUT = "loglevel = $loglevel\n"; |
70 |
|
|
+} |
71 |
|
|
+ |
72 |
|
|
+# Log Exception Hits |
73 |
|
|
+# Log if an exception (user, ip, URL, phrase) is matched and so |
74 |
|
|
+# the page gets let through. Can be useful for diagnosing |
75 |
|
|
+# why a site gets through the filter. |
76 |
|
|
+# 0 = never log exceptions |
77 |
|
|
+# 1 = log exceptions, but do not explicitly mark them as such |
78 |
|
|
+# 2 = always log & mark exceptions (default) |
79 |
|
|
+logexceptionhits = 2 |
80 |
|
|
+ |
81 |
|
|
+# Log File Format |
82 |
|
|
+# 1 = DansGuardian format (space delimited) |
83 |
|
|
+# 2 = CSV-style format |
84 |
|
|
+# 3 = Squid Log File Format |
85 |
|
|
+# 4 = Tab delimited |
86 |
|
|
+{ |
87 |
|
|
+ my $logfileformat = db_get_prop(\%dungog, 'dansguardian', "logfileformat") || '3'; |
88 |
|
|
+ $OUT = "logfileformat = $logfileformat\n"; |
89 |
|
|
+} |
90 |
|
|
+ |
91 |
|
|
+# truncate large items in log lines |
92 |
|
|
+#maxlogitemlength = 400 |
93 |
|
|
+ |
94 |
|
|
+# anonymize logs (blank out usernames & IPs) |
95 |
|
|
+#anonymizelogs = on |
96 |
|
|
+ |
97 |
|
|
+ |
98 |
|
|
+# Syslog logging |
99 |
|
|
+# |
100 |
|
|
+# Use syslog for access logging instead of logging to the file |
101 |
|
|
+# at the defined or built-in "loglocation" |
102 |
|
|
+#syslog = on |
103 |
|
|
+ |
104 |
|
|
+# Log file location |
105 |
|
|
+# |
106 |
|
|
+# Defines the log directory and filename. |
107 |
|
|
+#loglocation = '/var/log/dansguardian/access.log' |
108 |
|
|
+ |
109 |
|
|
+ |
110 |
|
|
+# Statistics log file location |
111 |
|
|
+# |
112 |
|
|
+# Defines the stat file directory and filename. |
113 |
|
|
+# Only used in conjunction with maxips > 0 |
114 |
|
|
+# Once every 3 minutes, the current number of IPs in the cache, and the most |
115 |
|
|
+# that have been in the cache since the daemon was started, are written to this |
116 |
|
|
+# file. IPs persist in the cache for 7 days. |
117 |
|
|
+#statlocation = '/var/log/dansguardian/stats' |
118 |
|
|
+ |
119 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings |
120 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings 1969-12-31 19:00:00.000000000 -0500 |
121 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings 2016-05-25 13:14:48.000000000 -0400 |
122 |
|
|
@@ -0,0 +1,9 @@ |
123 |
|
|
+# Network Settings |
124 |
|
|
+# |
125 |
|
|
+# the IP that DansGuardian listens on. If left blank DansGuardian will |
126 |
|
|
+# listen on all IPs. That would include all NICs, loopback, modem, etc. |
127 |
|
|
+# Normally you would have your firewall protecting this, but if you want |
128 |
|
|
+# you can limit it to a certain IP. To bind to multiple interfaces, |
129 |
|
|
+# specify each IP on an individual filterip line. |
130 |
|
|
+filterip = |
131 |
|
|
+ |
132 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport |
133 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport 1969-12-31 19:00:00.000000000 -0500 |
134 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport 2016-05-26 03:21:16.515000000 -0400 |
135 |
|
|
@@ -0,0 +1,6 @@ |
136 |
|
|
+# the port that DansGuardian listens to. |
137 |
|
|
+{ |
138 |
|
|
+ my $port = db_get_prop(\%dungog, 'dansguardian', 'port') || '8080'; |
139 |
|
|
+ $OUT = "filterport = $port\n"; |
140 |
|
|
+} |
141 |
|
|
+ |
142 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop |
143 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop 1969-12-31 19:00:00.000000000 -0500 |
144 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop 2016-05-25 13:14:48.000000000 -0400 |
145 |
|
|
@@ -0,0 +1,6 @@ |
146 |
|
|
+# the ip of the proxy (default is the loopback - i.e. this server) |
147 |
|
|
+proxyip = 127.0.0.1 |
148 |
|
|
+ |
149 |
|
|
+# the port DansGuardian connects to proxy on |
150 |
|
|
+proxyport = 3128 |
151 |
|
|
+ |
152 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote |
153 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote 1969-12-31 19:00:00.000000000 -0500 |
154 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote 2016-05-25 13:14:48.000000000 -0400 |
155 |
|
|
@@ -0,0 +1,14 @@ |
156 |
|
|
+# Whether to retrieve the original destination IP in transparent proxy |
157 |
|
|
+# setups and check it againt the domain pulled from the HTTP headers. |
158 |
|
|
+# |
159 |
|
|
+# Be aware that when visiting sites which use a certain type of round-robin |
160 |
|
|
+# DNS for load balancing, DG may mark requests as invalid unless DG gets |
161 |
|
|
+# exactly the same answers to its DNS requests as clients. The chances of |
162 |
|
|
+# this happening can be increased if all clients and servers on the same LAN |
163 |
|
|
+# make use of a local, caching DNS server instead of using upstream DNS |
164 |
|
|
+# directly. |
165 |
|
|
+# |
166 |
|
|
+# See http://www.kb.cert.org/vuls/id/435052 |
167 |
|
|
+# on (default) | off |
168 |
|
|
+#!! Not compiled !! originalip = on |
169 |
|
|
+ |
170 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress |
171 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress 1969-12-31 19:00:00.000000000 -0500 |
172 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress 2016-05-26 03:26:36.775000000 -0400 |
173 |
|
|
@@ -0,0 +1,24 @@ |
174 |
|
|
+# accessdeniedaddress is the address of your web server to which the cgi |
175 |
|
|
+# dansguardian reporting script was copied. Only used in reporting levels 1 and 2. |
176 |
|
|
+# |
177 |
|
|
+# This webserver must be either: |
178 |
|
|
+# 1. Non-proxied. Either a machine on the local network, or listed as an exception |
179 |
|
|
+# in your browser's proxy configuration. |
180 |
|
|
+# 2. Added to the exceptionsitelist. Option 1 is preferable; this option is |
181 |
|
|
+# only for users using both transparent proxying and a non-local server |
182 |
|
|
+# to host this script. |
183 |
|
|
+# |
184 |
|
|
+# Individual filter groups can override this setting in their own configuration. |
185 |
|
|
+# |
186 |
|
|
+{ |
187 |
|
|
+ my $deniedurl = db_get_prop(\%dungog, 'dansguardian', "deniedurl") || ''; |
188 |
|
|
+ if ($deniedurl ne '') |
189 |
|
|
+ { |
190 |
|
|
+ $OUT = "accessdeniedaddress = 'http://$deniedurl'\n"; |
191 |
|
|
+ } |
192 |
|
|
+ else |
193 |
|
|
+ { |
194 |
|
|
+ my $wsn = db_get_prop(\%dungog, 'dansguardian', "wsn") || ${'DomainName'}; |
195 |
|
|
+ $OUT = "accessdeniedaddress = 'http://$wsn/cgi-bin/dansguardian.pl'\n"; |
196 |
|
|
+ } |
197 |
|
|
+} |
198 |
|
|
\ No newline at end of file |
199 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter |
200 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter 1969-12-31 19:00:00.000000000 -0500 |
201 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter 2016-05-25 13:14:48.000000000 -0400 |
202 |
|
|
@@ -0,0 +1,9 @@ |
203 |
|
|
+# Non standard delimiter (only used with accessdeniedaddress) |
204 |
|
|
+# To help preserve the full banned URL, including parameters, the variables |
205 |
|
|
+# passed into the access denied CGI are separated using non-standard |
206 |
|
|
+# delimiters. This can be useful to ensure correct operation of the filter |
207 |
|
|
+# bypass modes. Parameters are split using "::" in place of "&", and "==" in |
208 |
|
|
+# place of "=". |
209 |
|
|
+# Default is enabled, but to go back to the standard mode, disable it. |
210 |
|
|
+nonstandarddelimiter = on |
211 |
|
|
+ |
212 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace |
213 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace 1969-12-31 19:00:00.000000000 -0500 |
214 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace 2016-05-25 13:14:48.000000000 -0400 |
215 |
|
|
@@ -0,0 +1,9 @@ |
216 |
|
|
+# Banned image replacement |
217 |
|
|
+# Images that are banned due to domain/url/etc reasons including those |
218 |
|
|
+# in the adverts blacklists can be replaced by an image. This will, |
219 |
|
|
+# for example, hide images from advert sites and remove broken image |
220 |
|
|
+# icons from banned domains. |
221 |
|
|
+# on (default) | off |
222 |
|
|
+usecustombannedimage = on |
223 |
|
|
+custombannedimagefile = '/usr/share/dansguardian/transparent1x1.gif' |
224 |
|
|
+ |
225 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups |
226 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups 1969-12-31 19:00:00.000000000 -0500 |
227 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups 2016-05-26 03:28:57.490000000 -0400 |
228 |
|
|
@@ -0,0 +1,15 @@ |
229 |
|
|
+# Filter groups options |
230 |
|
|
+# filtergroups sets the number of filter groups. A filter group is a set of content |
231 |
|
|
+# filtering options you can apply to a group of users. The value must be 1 or more. |
232 |
|
|
+# DansGuardian will automatically look for dansguardianfN.conf where N is the filter |
233 |
|
|
+# group. To assign users to groups use the filtergroupslist option. All users default |
234 |
|
|
+# to filter group 1. You must have some sort of authentication to be able to map users |
235 |
|
|
+# to a group. The more filter groups the more copies of the lists will be in RAM so |
236 |
|
|
+# use as few as possible. |
237 |
|
|
+{ |
238 |
|
|
+ #from filtergroupslist/30records template |
239 |
|
|
+ my $fn = db_get_prop(\%dungog, 'dansguardian', "fn") || '1'; |
240 |
|
|
+ $OUT = "filtergroups = $fn\n"; |
241 |
|
|
+} |
242 |
|
|
+filtergroupslist = '/etc/dansguardian/lists/filtergroupslist' |
243 |
|
|
+ |
244 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation |
245 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation 1969-12-31 19:00:00.000000000 -0500 |
246 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation 2016-05-25 13:14:48.000000000 -0400 |
247 |
|
|
@@ -0,0 +1,4 @@ |
248 |
|
|
+# Authentication files location |
249 |
|
|
+bannediplist = '/etc/dansguardian/lists/bannediplist' |
250 |
|
|
+exceptioniplist = '/etc/dansguardian/lists/exceptioniplist' |
251 |
|
|
+ |
252 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase |
253 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase 1969-12-31 19:00:00.000000000 -0500 |
254 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase 2016-05-25 13:14:48.000000000 -0400 |
255 |
|
|
@@ -0,0 +1,6 @@ |
256 |
|
|
+# Show weighted phrases found |
257 |
|
|
+# If enabled then the phrases found that made up the total which excedes |
258 |
|
|
+# the naughtyness limit will be logged and, if the reporting level is |
259 |
|
|
+# high enough, reported. on | off |
260 |
|
|
+showweightedfound = on |
261 |
|
|
+ |
262 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode |
263 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode 1969-12-31 19:00:00.000000000 -0500 |
264 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode 2016-05-25 13:14:48.000000000 -0400 |
265 |
|
|
@@ -0,0 +1,8 @@ |
266 |
|
|
+# Weighted phrase mode |
267 |
|
|
+# There are 3 possible modes of operation: |
268 |
|
|
+# 0 = off = do not use the weighted phrase feature. |
269 |
|
|
+# 1 = on, normal = normal weighted phrase operation. |
270 |
|
|
+# 2 = on, singular = each weighted phrase found only counts once on a page. |
271 |
|
|
+# |
272 |
|
|
+weightedphrasemode = 2 |
273 |
|
|
+ |
274 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage |
275 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage 1969-12-31 19:00:00.000000000 -0500 |
276 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage 2016-05-25 13:14:48.000000000 -0400 |
277 |
|
|
@@ -0,0 +1,14 @@ |
278 |
|
|
+#Positive (clean) result caching for URLs |
279 |
|
|
+# Caches good pages so they don't need to be scanned again. |
280 |
|
|
+# It also works with AV plugins. |
281 |
|
|
+# 0 = off (recommended for ISPs with users with disimilar browsing) |
282 |
|
|
+# 1000 = recommended for most users |
283 |
|
|
+# 5000 = suggested max upper limit |
284 |
|
|
+# If you're using an AV plugin then use at least 5000. |
285 |
|
|
+urlcachenumber = 1000 |
286 |
|
|
+# |
287 |
|
|
+# Age before they are stale and should be ignored in seconds |
288 |
|
|
+# 0 = never |
289 |
|
|
+# 900 = recommended = 15 mins |
290 |
|
|
+urlcacheage = 900 |
291 |
|
|
+ |
292 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache |
293 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache 1969-12-31 19:00:00.000000000 -0500 |
294 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache 2016-05-25 13:14:48.000000000 -0400 |
295 |
|
|
@@ -0,0 +1,8 @@ |
296 |
|
|
+# Clean cache for content (AV) scan results |
297 |
|
|
+# By default, to save CPU, files scanned and found to be |
298 |
|
|
+# clean are inserted into the clean cache and NOT scanned |
299 |
|
|
+# again for a while. If you don't like this then choose |
300 |
|
|
+# to disable it. |
301 |
|
|
+# (on|off) default = on. |
302 |
|
|
+scancleancache = on |
303 |
|
|
+ |
304 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode |
305 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode 1969-12-31 19:00:00.000000000 -0500 |
306 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode 2016-05-25 13:14:48.000000000 -0400 |
307 |
|
|
@@ -0,0 +1,11 @@ |
308 |
|
|
+# Smart, Raw and Meta/Title phrase content filtering options |
309 |
|
|
+# Smart is where the multiple spaces and HTML are removed before phrase filtering |
310 |
|
|
+# Raw is where the raw HTML including meta tags are phrase filtered |
311 |
|
|
+# Meta/Title is where only meta and title tags are phrase filtered (v. quick) |
312 |
|
|
+# CPU usage can be effectively halved by using setting 0 or 1 compared to 2 |
313 |
|
|
+# 0 = raw only |
314 |
|
|
+# 1 = smart only |
315 |
|
|
+# 2 = both of the above (default) |
316 |
|
|
+# 3 = meta/title |
317 |
|
|
+phrasefiltermode = 2 |
318 |
|
|
+ |
319 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing |
320 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing 1969-12-31 19:00:00.000000000 -0500 |
321 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing 2016-05-25 13:14:48.000000000 -0400 |
322 |
|
|
@@ -0,0 +1,18 @@ |
323 |
|
|
+# Lower casing options |
324 |
|
|
+# When a document is scanned the uppercase letters are converted to lower case |
325 |
|
|
+# in order to compare them with the phrases. However this can break Big5 and |
326 |
|
|
+# other 16-bit texts. If needed preserve the case. As of version 2.7.0 accented |
327 |
|
|
+# characters are supported. |
328 |
|
|
+# 0 = force lower case (default) |
329 |
|
|
+# 1 = do not change case |
330 |
|
|
+# 2 = scan first in lower case, then in original case |
331 |
|
|
+preservecase = 0 |
332 |
|
|
+ |
333 |
|
|
+# Note: |
334 |
|
|
+# If phrasefiltermode and preserve case are both 2, this equates to 4 phrase |
335 |
|
|
+# filtering passes. If you have a large enough userbase for this to be a |
336 |
|
|
+# worry, and need to filter pages in exotic character encodings, it may be |
337 |
|
|
+# better to run two instances on separate servers: one with preservecase 1 |
338 |
|
|
+# (and possibly forcequicksearch 1) and non ASCII/UTF-8 phrase lists, and one |
339 |
|
|
+# with preservecase 0 and ASCII/UTF-8 lists. |
340 |
|
|
+ |
341 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding |
342 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding 1969-12-31 19:00:00.000000000 -0500 |
343 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding 2016-05-25 13:14:48.000000000 -0400 |
344 |
|
|
@@ -0,0 +1,8 @@ |
345 |
|
|
+# Hex decoding options |
346 |
|
|
+# When a document is scanned it can optionally convert %XX to chars. |
347 |
|
|
+# If you find documents are getting past the phrase filtering due to encoding |
348 |
|
|
+# then enable. However this can break Big5 and other 16-bit texts. |
349 |
|
|
+# off = disabled (default) |
350 |
|
|
+# on = enabled |
351 |
|
|
+hexdecodecontent = off |
352 |
|
|
+ |
353 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch |
354 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch 1969-12-31 19:00:00.000000000 -0500 |
355 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch 2016-05-25 13:14:48.000000000 -0400 |
356 |
|
|
@@ -0,0 +1,8 @@ |
357 |
|
|
+# Force Quick Search rather than DFA search algorithm |
358 |
|
|
+# The current DFA implementation is not totally 16-bit character compatible |
359 |
|
|
+# but is used by default as it handles large phrase lists much faster. |
360 |
|
|
+# If you wish to use a large number of 16-bit character phrases then |
361 |
|
|
+# enable this option. |
362 |
|
|
+# off (default) | on (Big5 compatible) |
363 |
|
|
+forcequicksearch = off |
364 |
|
|
+ |
365 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook |
366 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook 1969-12-31 19:00:00.000000000 -0500 |
367 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook 2016-05-25 13:14:48.000000000 -0400 |
368 |
|
|
@@ -0,0 +1,9 @@ |
369 |
|
|
+# Reverse lookups for banned site and URLs. |
370 |
|
|
+# If set to on, DansGuardian will look up the forward DNS for an IP URL |
371 |
|
|
+# address and search for both in the banned site and URL lists. This would |
372 |
|
|
+# prevent a user from simply entering the IP for a banned address. |
373 |
|
|
+# It will reduce searching speed somewhat so unless you have a local caching |
374 |
|
|
+# DNS server, leave it off and use the Blanket IP Block option in the |
375 |
|
|
+# bannedsitelist file instead. |
376 |
|
|
+reverseaddresslookups = off |
377 |
|
|
+ |
378 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip |
379 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip 1969-12-31 19:00:00.000000000 -0500 |
380 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip 2016-05-25 13:14:48.000000000 -0400 |
381 |
|
|
@@ -0,0 +1,11 @@ |
382 |
|
|
+# Reverse lookups for banned and exception IP lists. |
383 |
|
|
+# If set to on, DansGuardian will look up the forward DNS for the IP |
384 |
|
|
+# of the connecting computer. This means you can put in hostnames in |
385 |
|
|
+# the exceptioniplist and bannediplist. |
386 |
|
|
+# If a client computer is matched against an IP given in the lists, then the |
387 |
|
|
+# IP will be recorded in any log entries; if forward DNS is successful and a |
388 |
|
|
+# match occurs against a hostname, the hostname will be logged instead. |
389 |
|
|
+# It will reduce searching speed somewhat so unless you have a local DNS server, |
390 |
|
|
+# leave it off. |
391 |
|
|
+reverseclientiplookups = off |
392 |
|
|
+ |
393 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost |
394 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost 1969-12-31 19:00:00.000000000 -0500 |
395 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost 2016-05-25 13:14:48.000000000 -0400 |
396 |
|
|
@@ -0,0 +1,8 @@ |
397 |
|
|
+# Perform reverse lookups on client IPs for successful requests. |
398 |
|
|
+# If set to on, DansGuardian will look up the forward DNS for the IP |
399 |
|
|
+# of the connecting computer, and log host names (where available) rather than |
400 |
|
|
+# IPs against requests. |
401 |
|
|
+# This is not dependent on reverseclientiplookups being enabled; however, if it |
402 |
|
|
+# is, enabling this option does not incur any additional forward DNS requests. |
403 |
|
|
+logclienthostnames = off |
404 |
|
|
+ |
405 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl |
406 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl 1969-12-31 19:00:00.000000000 -0500 |
407 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl 2016-05-25 13:14:48.000000000 -0400 |
408 |
|
|
@@ -0,0 +1,8 @@ |
409 |
|
|
+# Build bannedsitelist and bannedurllist cache files. |
410 |
|
|
+# This will compare the date stamp of the list file with the date stamp of |
411 |
|
|
+# the cache file and will recreate as needed. |
412 |
|
|
+# If a bsl or bul .processed file exists, then that will be used instead. |
413 |
|
|
+# It will increase process start speed by 300%. On slow computers this will |
414 |
|
|
+# be significant. Fast computers do not need this option. on | off |
415 |
|
|
+createlistcachefiles = on |
416 |
|
|
+ |
417 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize |
418 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize 1969-12-31 19:00:00.000000000 -0500 |
419 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize 2016-05-26 03:26:08.080000000 -0400 |
420 |
|
|
@@ -0,0 +1,14 @@ |
421 |
|
|
+# POST protection (web upload and forms) |
422 |
|
|
+# does not block forms without any file upload, i.e. this is just for |
423 |
|
|
+# blocking or limiting uploads |
424 |
|
|
+# measured in kibibytes after MIME encoding and header bumph |
425 |
|
|
+# use 0 for a complete block |
426 |
|
|
+# use higher (e.g. 512 = 512Kbytes) for limiting |
427 |
|
|
+# use -1 for no blocking |
428 |
|
|
+#maxuploadsize = 512 |
429 |
|
|
+#maxuploadsize = 0 |
430 |
|
|
+{ |
431 |
|
|
+ my $maxuploadsize = db_get_prop(\%dungog, 'dansguardian', "maxuploadsize") || '-1'; |
432 |
|
|
+ if ($maxuploadsize eq 'block') {$maxuploadsize = '0';} |
433 |
|
|
+ $OUT = "maxuploadsize = $maxuploadsize\n"; |
434 |
|
|
+} |
435 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize |
436 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize 1969-12-31 19:00:00.000000000 -0500 |
437 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize 2016-05-25 13:14:48.000000000 -0400 |
438 |
|
|
@@ -0,0 +1,11 @@ |
439 |
|
|
+# Max content filter size |
440 |
|
|
+# Sometimes web servers label binary files as text which can be very |
441 |
|
|
+# large which causes a huge drain on memory and cpu resources. |
442 |
|
|
+# To counter this, you can limit the size of the document to be |
443 |
|
|
+# filtered and get it to just pass it straight through. |
444 |
|
|
+# This setting also applies to content regular expression modification. |
445 |
|
|
+# The value must not be higher than maxcontentramcachescansize |
446 |
|
|
+# The size is in Kibibytes - eg 2048 = 2Mb |
447 |
|
|
+# use 0 to set it to maxcontentramcachescansize |
448 |
|
|
+maxcontentfiltersize = 256 |
449 |
|
|
+ |
450 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize |
451 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize 1969-12-31 19:00:00.000000000 -0500 |
452 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize 2016-05-25 13:14:48.000000000 -0400 |
453 |
|
|
@@ -0,0 +1,10 @@ |
454 |
|
|
+# Max content ram cache scan size |
455 |
|
|
+# This is only used if you use a content scanner plugin such as AV |
456 |
|
|
+# This is the max size of file that DG will download and cache |
457 |
|
|
+# in RAM. After this limit is reached it will cache to disk |
458 |
|
|
+# This value must be less than or equal to maxcontentfilecachescansize. |
459 |
|
|
+# The size is in Kibibytes - eg 10240 = 10Mb |
460 |
|
|
+# use 0 to set it to maxcontentfilecachescansize |
461 |
|
|
+# This option may be ignored by the configured download manager. |
462 |
|
|
+maxcontentramcachescansize = 2000 |
463 |
|
|
+ |
464 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize |
465 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize 1969-12-31 19:00:00.000000000 -0500 |
466 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize 2016-05-25 13:14:48.000000000 -0400 |
467 |
|
|
@@ -0,0 +1,8 @@ |
468 |
|
|
+# Max content file cache scan size |
469 |
|
|
+# This is only used if you use a content scanner plugin such as AV |
470 |
|
|
+# This is the max size file that DG will download |
471 |
|
|
+# so that it can be scanned or virus checked. |
472 |
|
|
+# This value must be greater or equal to maxcontentramcachescansize. |
473 |
|
|
+# The size is in Kibibytes - eg 10240 = 10Mb |
474 |
|
|
+maxcontentfilecachescansize = 20000 |
475 |
|
|
+ |
476 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir |
477 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir 1969-12-31 19:00:00.000000000 -0500 |
478 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir 2016-05-25 13:14:48.000000000 -0400 |
479 |
|
|
@@ -0,0 +1,5 @@ |
480 |
|
|
+# File cache dir |
481 |
|
|
+# Where DG will download files to be scanned if too large for the |
482 |
|
|
+# RAM cache. |
483 |
|
|
+filecachedir = '/tmp' |
484 |
|
|
+ |
485 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl |
486 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl 1969-12-31 19:00:00.000000000 -0500 |
487 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl 2016-05-25 13:14:48.000000000 -0400 |
488 |
|
|
@@ -0,0 +1,9 @@ |
489 |
|
|
+# Delete file cache after user completes download |
490 |
|
|
+# When a file gets save to temp it stays there until it is deleted. |
491 |
|
|
+# You can choose to have the file deleted when the user makes a sucessful |
492 |
|
|
+# download. This will mean if they click on the link to download from |
493 |
|
|
+# the temp store a second time it will give a 404 error. |
494 |
|
|
+# You should configure something to delete old files in temp to stop it filling up. |
495 |
|
|
+# on|off (defaults to on) |
496 |
|
|
+deletedownloadedtempfiles = on |
497 |
|
|
+ |
498 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay |
499 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay 1969-12-31 19:00:00.000000000 -0500 |
500 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay 2016-05-25 13:14:48.000000000 -0400 |
501 |
|
|
@@ -0,0 +1,9 @@ |
502 |
|
|
+# Initial Trickle delay |
503 |
|
|
+# This is the number of seconds a browser connection is left waiting |
504 |
|
|
+# before first being sent *something* to keep it alive. The |
505 |
|
|
+# *something* depends on the download manager chosen. |
506 |
|
|
+# Do not choose a value too low or normal web pages will be affected. |
507 |
|
|
+# A value between 20 and 110 would be sensible |
508 |
|
|
+# This may be ignored by the configured download manager. |
509 |
|
|
+initialtrickledelay = 20 |
510 |
|
|
+ |
511 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay |
512 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay 1969-12-31 19:00:00.000000000 -0500 |
513 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay 2016-05-25 13:14:48.000000000 -0400 |
514 |
|
|
@@ -0,0 +1,7 @@ |
515 |
|
|
+# Trickle delay |
516 |
|
|
+# This is the number of seconds a browser connection is left waiting |
517 |
|
|
+# before being sent more *something* to keep it alive. The |
518 |
|
|
+# *something* depends on the download manager chosen. |
519 |
|
|
+# This may be ignored by the configured download manager. |
520 |
|
|
+trickledelay = 10 |
521 |
|
|
+ |
522 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang |
523 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang 1969-12-31 19:00:00.000000000 -0500 |
524 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang 2016-05-25 13:14:48.000000000 -0400 |
525 |
|
|
@@ -0,0 +1,31 @@ |
526 |
|
|
+# Download Managers |
527 |
|
|
+# These handle downloads of files to be filtered and scanned. |
528 |
|
|
+# They differ in the method they deal with large downloads. |
529 |
|
|
+# Files usually need to be downloaded 100% before they can be |
530 |
|
|
+# filtered and scanned before being sent on to the browser. |
531 |
|
|
+# Normally the browser can just wait, but with content scanning, |
532 |
|
|
+# for example to AV, the browser may timeout or the user may get |
533 |
|
|
+# confused so the download manager has to do some sort of |
534 |
|
|
+# 'keep alive'. |
535 |
|
|
+# |
536 |
|
|
+# There are various methods possible but not all are included. |
537 |
|
|
+# The author does not have the time to write them all so I have |
538 |
|
|
+# included a plugin systam. Also, not all methods work with all |
539 |
|
|
+# browsers and clients. Specifically some fancy methods don't |
540 |
|
|
+# work with software that downloads updates. To solve this, |
541 |
|
|
+# each plugin can support a regular expression for matching |
542 |
|
|
+# the client's user-agent string, and lists of the mime types |
543 |
|
|
+# and extensions it should manage. |
544 |
|
|
+# |
545 |
|
|
+# Note that these are the matching methods provided by the base plugin |
546 |
|
|
+# code, and individual plugins may override or add to them. |
547 |
|
|
+# See the individual plugin conf files for supported options. |
548 |
|
|
+# |
549 |
|
|
+# The plugins are matched in the order you specify and the last |
550 |
|
|
+# one is forced to match as the default, regardless of user agent |
551 |
|
|
+# and other matching mechanisms. |
552 |
|
|
+# |
553 |
|
|
+downloadmanager = '/etc/dansguardian/downloadmanagers/fancy.conf' |
554 |
|
|
+#downloadmanager = '/etc/dansguardian/downloadmanagers/trickle.conf' |
555 |
|
|
+downloadmanager = '/etc/dansguardian/downloadmanagers/default.conf' |
556 |
|
|
+ |
557 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners |
558 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners 1969-12-31 19:00:00.000000000 -0500 |
559 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners 2016-05-26 03:59:22.616000000 -0400 |
560 |
|
|
@@ -0,0 +1,29 @@ |
561 |
|
|
+# Content Scanners (Also known as AV scanners) |
562 |
|
|
+# These are plugins that scan the content of all files your browser fetches |
563 |
|
|
+# for example to AV scan. The options are limitless. Eventually all of |
564 |
|
|
+# DansGuardian will be plugin based. You can have more than one content |
565 |
|
|
+# scanner. The plugins are run in the order you specify. |
566 |
|
|
+# This is one of the few places you can have multiple options of the same name. |
567 |
|
|
+# |
568 |
|
|
+# Some of the scanner(s) require 3rd party software and libraries eg clamav. |
569 |
|
|
+# See the individual plugin conf file for more options (if any). |
570 |
|
|
+# |
571 |
|
|
+#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/clamav.conf' |
572 |
|
|
+#contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf' |
573 |
|
|
+#!! Unimplemented !! contentscanner = '/etc/dansguardian/contentscanners/kavav.conf' |
574 |
|
|
+#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/kavdscan.conf' |
575 |
|
|
+#contentscanner = '/etc/dansguardian/contentscanners/icapscan.conf' |
576 |
|
|
+#contentscanner = '/etc/dansguardian/contentscanners/commandlinescan.conf' |
577 |
|
|
+ |
578 |
|
|
+{ |
579 |
|
|
+ my $contentscanner = db_get_prop(\%dungog, 'dansguardian', "contentscanner") || ''; |
580 |
|
|
+ if ($contentscanner eq 'clamscan') |
581 |
|
|
+ { |
582 |
|
|
+ $OUT = "contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf'\n"; |
583 |
|
|
+ } |
584 |
|
|
+ else |
585 |
|
|
+ { |
586 |
|
|
+ $OUT= "# clamscan disabled " |
587 |
|
|
+ } |
588 |
|
|
+ |
589 |
|
|
+} |
590 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout |
591 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout 1969-12-31 19:00:00.000000000 -0500 |
592 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout 2016-05-25 13:14:48.000000000 -0400 |
593 |
|
|
@@ -0,0 +1,7 @@ |
594 |
|
|
+# Content scanner timeout |
595 |
|
|
+# Some of the content scanners support using a timeout value to stop |
596 |
|
|
+# processing (eg AV scanning) the file if it takes too long. |
597 |
|
|
+# If supported this will be used. |
598 |
|
|
+# The default of 60 seconds is probably reasonable. |
599 |
|
|
+contentscannertimeout = 60 |
600 |
|
|
+ |
601 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions |
602 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions 1969-12-31 19:00:00.000000000 -0500 |
603 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions 2016-05-25 13:14:48.000000000 -0400 |
604 |
|
|
@@ -0,0 +1,8 @@ |
605 |
|
|
+# Content scan exceptions |
606 |
|
|
+# If 'on' exception sites, urls, users etc will be scanned |
607 |
|
|
+# This is probably not desirable behavour as exceptions are |
608 |
|
|
+# supposed to be trusted and will increase load. |
609 |
|
|
+# Correct use of grey lists are a better idea. |
610 |
|
|
+# (on|off) default = off |
611 |
|
|
+contentscanexceptions = off |
612 |
|
|
+ |
613 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins |
614 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins 1969-12-31 19:00:00.000000000 -0500 |
615 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins 2016-05-26 03:38:41.514000000 -0400 |
616 |
|
|
@@ -0,0 +1,29 @@ |
617 |
|
|
+# Auth plugins |
618 |
|
|
+# These replace the usernameidmethod* options in previous versions. They |
619 |
|
|
+# handle the extraction of client usernames from various sources, such as |
620 |
|
|
+# Proxy-Authorisation headers and ident servers, enabling requests to be |
621 |
|
|
+# handled according to the settings of the user's filter group. |
622 |
|
|
+# Multiple plugins can be specified, and will be queried in order until one |
623 |
|
|
+# of them either finds a username or throws an error. For example, if Squid |
624 |
|
|
+# is configured with both NTLM and Basic auth enabled, and both the 'proxy-basic' |
625 |
|
|
+# and 'proxy-ntlm' auth plugins are enabled here, then clients which do not support |
626 |
|
|
+# NTLM can fall back to Basic without sacrificing access rights. |
627 |
|
|
+# |
628 |
|
|
+# If you do not use multiple filter groups, you need not specify this option. |
629 |
|
|
+# |
630 |
|
|
+#authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf' |
631 |
|
|
+#authplugin = '/etc/dansguardian/authplugins/proxy-digest.conf' |
632 |
|
|
+#authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf' |
633 |
|
|
+#authplugin = '/etc/dansguardian/authplugins/ident.conf' |
634 |
|
|
+#authplugin = '/etc/dansguardian/authplugins/ip.conf' |
635 |
|
|
+{ |
636 |
|
|
+ my $proxyaccess = db_get_prop(\%conf, 'squid', "RequireAuth") || ''; |
637 |
|
|
+ if ($proxyaccess eq 'ident') |
638 |
|
|
+ { |
639 |
|
|
+ $OUT = "authplugin = '/etc/dansguardian/authplugins/ident.conf'\n"; |
640 |
|
|
+ } |
641 |
|
|
+ elsif ($proxyaccess =~ /(ncsa|pam|ldap)/) |
642 |
|
|
+ { |
643 |
|
|
+ $OUT = "authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'\n"; |
644 |
|
|
+ } |
645 |
|
|
+} |
646 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local |
647 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local 2008-10-20 11:44:27.000000000 -0400 |
648 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local 1969-12-31 19:00:00.000000000 -0500 |
649 |
|
|
@@ -1,66 +0,0 @@ |
650 |
|
|
-###---------- LOCAL DansGuardian's settings ----------### |
651 |
|
|
- |
652 |
|
|
-{ |
653 |
|
|
- use esmith::config; |
654 |
|
|
- use esmith::db; |
655 |
|
|
- |
656 |
|
|
- my %conf; |
657 |
|
|
- tie %conf, 'esmith::config'; |
658 |
|
|
- |
659 |
|
|
- my %dungog; |
660 |
|
|
- tie %dungog, 'esmith::config', '/home/e-smith/db/dungog'; |
661 |
|
|
- |
662 |
|
|
- $OUT = ''; |
663 |
|
|
- |
664 |
|
|
- my $port = db_get_prop(\%dungog, 'dansguardian', 'port') || '8080'; |
665 |
|
|
- $OUT .= "filterport = $port\n"; |
666 |
|
|
- |
667 |
|
|
- #Individual filter groups can override this setting in their own configuration. |
668 |
|
|
- my $deniedurl = db_get_prop(\%dungog, 'dansguardian', "deniedurl") || ''; |
669 |
|
|
- if ($deniedurl ne '') |
670 |
|
|
- { |
671 |
|
|
- $OUT .= "accessdeniedaddress = 'http://$deniedurl'\n"; |
672 |
|
|
- } |
673 |
|
|
- else |
674 |
|
|
- { |
675 |
|
|
- my $wsn = db_get_prop(\%dungog, 'dansguardian', "wsn") || ${'DomainName'}; |
676 |
|
|
- $OUT .= "accessdeniedaddress = 'http://$wsn/cgi-bin/dansguardian.pl'\n"; |
677 |
|
|
- } |
678 |
|
|
- |
679 |
|
|
- my $maxuploadsize = db_get_prop(\%dungog, 'dansguardian', "maxuploadsize") || '-1'; |
680 |
|
|
- if ($maxuploadsize eq 'block') {$maxuploadsize = '0';} |
681 |
|
|
- $OUT .= "maxuploadsize = $maxuploadsize\n"; |
682 |
|
|
- |
683 |
|
|
- #from filtergroupslist/30records template |
684 |
|
|
- my $fn = db_get_prop(\%dungog, 'dansguardian', "fn") || '1'; |
685 |
|
|
- $OUT .= "filtergroups = $fn\n"; |
686 |
|
|
- |
687 |
|
|
- my $loglevel = db_get_prop(\%dungog, 'dansguardian', "loglevel") || '0'; |
688 |
|
|
- $OUT .= "loglevel = $loglevel\n"; |
689 |
|
|
- |
690 |
|
|
- my $logfileformat = db_get_prop(\%dungog, 'dansguardian', "logfileformat") || '1'; |
691 |
|
|
- $OUT .= "logfileformat = $logfileformat\n"; |
692 |
|
|
- |
693 |
|
|
- my $language = db_get_prop(\%dungog, 'dansguardian', "language") || 'ukenglish'; |
694 |
|
|
- $OUT .= "language = $language\n"; |
695 |
|
|
- |
696 |
|
|
- if (-e "/etc/dansguardian/languages/$language/templatef0.html") |
697 |
|
|
- { |
698 |
|
|
- $OUT .= "htmltemplate = templatef0.html\n"; |
699 |
|
|
- } |
700 |
|
|
- |
701 |
|
|
- my $proxyaccess = db_get_prop(\%conf, 'squid', "RequireAuth") || ''; |
702 |
|
|
- if ($proxyaccess eq 'ident') |
703 |
|
|
- { |
704 |
|
|
- $OUT .= "authplugin = '/etc/dansguardian/authplugins/ident.conf'\n"; |
705 |
|
|
- } |
706 |
|
|
- elsif ($proxyaccess =~ /(ncsa|pam|ldap)/) |
707 |
|
|
- { |
708 |
|
|
- $OUT .= "authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'\n"; |
709 |
|
|
- } |
710 |
|
|
-} |
711 |
|
|
-reportinglevel = 1 |
712 |
|
|
-maxlogitemlength = 300 |
713 |
|
|
-contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf' |
714 |
|
|
- |
715 |
|
|
-###---------- Default DansGuardian's settings ----------### |
716 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls |
717 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls 1969-12-31 19:00:00.000000000 -0500 |
718 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls 2016-05-25 13:14:48.000000000 -0400 |
719 |
|
|
@@ -0,0 +1,11 @@ |
720 |
|
|
+# Re-check replaced URLs |
721 |
|
|
+# As a matter of course, URLs undergo regular expression search/replace (urlregexplist) |
722 |
|
|
+# *after* checking the exception site/URL/regexpURL lists, but *before* checking against |
723 |
|
|
+# the banned site/URL lists, allowing certain requests that would be matched against the |
724 |
|
|
+# latter in their original state to effectively be converted into grey requests. |
725 |
|
|
+# With this option enabled, the exception site/URL/regexpURL lists are also re-checked |
726 |
|
|
+# after replacement, making it possible for URL replacement to trigger exceptions based |
727 |
|
|
+# on them. |
728 |
|
|
+# Defaults to off. |
729 |
|
|
+recheckreplacedurls = off |
730 |
|
|
+ |
731 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc |
732 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc 1969-12-31 19:00:00.000000000 -0500 |
733 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc 2016-05-25 13:14:48.000000000 -0400 |
734 |
|
|
@@ -0,0 +1,7 @@ |
735 |
|
|
+# Misc settings |
736 |
|
|
+ |
737 |
|
|
+# if on it adds an X-Forwarded-For: <clientip> to the HTTP request |
738 |
|
|
+# header. This may help solve some problem sites that need to know the |
739 |
|
|
+# source ip. on | off |
740 |
|
|
+forwardedfor = off |
741 |
|
|
+ |
742 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc |
743 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc 1969-12-31 19:00:00.000000000 -0500 |
744 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc 2016-05-25 13:14:48.000000000 -0400 |
745 |
|
|
@@ -0,0 +1,5 @@ |
746 |
|
|
+# if on it uses the X-Forwarded-For: <clientip> to determine the client |
747 |
|
|
+# IP. This is for when you have squid between the clients and DansGuardian. |
748 |
|
|
+# Warning - headers are easily spoofed. on | off |
749 |
|
|
+usexforwardedfor = off |
750 |
|
|
+ |
751 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc |
752 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc 1969-12-31 19:00:00.000000000 -0500 |
753 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc 2016-05-25 13:14:48.000000000 -0400 |
754 |
|
|
@@ -0,0 +1,5 @@ |
755 |
|
|
+# if on it logs some debug info regarding fork()ing and accept()ing which |
756 |
|
|
+# can usually be ignored. These are logged by syslog. It is safe to leave |
757 |
|
|
+# it on or off |
758 |
|
|
+logconnectionhandlingerrors = on |
759 |
|
|
+ |
760 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle |
761 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle 1969-12-31 19:00:00.000000000 -0500 |
762 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle 2016-05-25 13:14:48.000000000 -0400 |
763 |
|
|
@@ -0,0 +1,8 @@ |
764 |
|
|
+# Fork pool options |
765 |
|
|
+ |
766 |
|
|
+# If on, this causes DG to write to the log file whenever child processes are |
767 |
|
|
+# created or destroyed (other than by crashes). This information can help in |
768 |
|
|
+# understanding and tuning the following parameters, but is not generally |
769 |
|
|
+# useful in production. |
770 |
|
|
+logchildprocesshandling = off |
771 |
|
|
+ |
772 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild |
773 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild 1969-12-31 19:00:00.000000000 -0500 |
774 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild 2016-05-25 13:14:48.000000000 -0400 |
775 |
|
|
@@ -0,0 +1,5 @@ |
776 |
|
|
+# sets the maximum number of processes to spawn to handle the incoming |
777 |
|
|
+# connections. Max value usually 250 depending on OS. |
778 |
|
|
+# On large sites you might want to try 180. |
779 |
|
|
+maxchildren = 120 |
780 |
|
|
+ |
781 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild |
782 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild 1969-12-31 19:00:00.000000000 -0500 |
783 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild 2016-05-25 13:14:48.000000000 -0400 |
784 |
|
|
@@ -0,0 +1,4 @@ |
785 |
|
|
+# sets the minimum number of processes to spawn to handle the incoming connections. |
786 |
|
|
+# On large sites you might want to try 32. |
787 |
|
|
+minchildren = 8 |
788 |
|
|
+ |
789 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild |
790 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild 1969-12-31 19:00:00.000000000 -0500 |
791 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild 2016-05-25 13:14:48.000000000 -0400 |
792 |
|
|
@@ -0,0 +1,4 @@ |
793 |
|
|
+# sets the minimum number of processes to be kept ready to handle connections. |
794 |
|
|
+# On large sites you might want to try 8. |
795 |
|
|
+minsparechildren = 4 |
796 |
|
|
+ |
797 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild |
798 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild 1969-12-31 19:00:00.000000000 -0500 |
799 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild 2016-05-25 13:14:48.000000000 -0400 |
800 |
|
|
@@ -0,0 +1,4 @@ |
801 |
|
|
+# sets the minimum number of processes to spawn when it runs out |
802 |
|
|
+# On large sites you might want to try 10. |
803 |
|
|
+preforkchildren = 6 |
804 |
|
|
+ |
805 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild |
806 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild 1969-12-31 19:00:00.000000000 -0500 |
807 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild 2016-05-25 13:14:48.000000000 -0400 |
808 |
|
|
@@ -0,0 +1,5 @@ |
809 |
|
|
+# sets the maximum number of processes to have doing nothing. |
810 |
|
|
+# When this many are spare it will cull some of them. |
811 |
|
|
+# On large sites you might want to try 64. |
812 |
|
|
+maxsparechildren = 32 |
813 |
|
|
+ |
814 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild |
815 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild 1969-12-31 19:00:00.000000000 -0500 |
816 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild 2016-05-25 13:14:48.000000000 -0400 |
817 |
|
|
@@ -0,0 +1,5 @@ |
818 |
|
|
+# sets the maximum age of a child process before it croaks it. |
819 |
|
|
+# This is the number of connections they handle before exiting. |
820 |
|
|
+# On large sites you might want to try 10000. |
821 |
|
|
+maxagechildren = 500 |
822 |
|
|
+ |
823 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips |
824 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips 1969-12-31 19:00:00.000000000 -0500 |
825 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips 2016-05-25 13:14:48.000000000 -0400 |
826 |
|
|
@@ -0,0 +1,5 @@ |
827 |
|
|
+# Sets the maximum number client IP addresses allowed to connect at once. |
828 |
|
|
+# Use this to set a hard limit on the number of users allowed to concurrently |
829 |
|
|
+# browse the web. Set to 0 for no limit, and to disable the IP cache process. |
830 |
|
|
+maxips = 0 |
831 |
|
|
+ |
832 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions |
833 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions 1969-12-31 19:00:00.000000000 -0500 |
834 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions 2016-05-25 13:14:48.000000000 -0400 |
835 |
|
|
@@ -0,0 +1,22 @@ |
836 |
|
|
+# Process options |
837 |
|
|
+# (Change these only if you really know what you are doing). |
838 |
|
|
+# These options allow you to run multiple instances of DansGuardian on a single machine. |
839 |
|
|
+# Remember to edit the log file path above also if that is your intention. |
840 |
|
|
+ |
841 |
|
|
+# IPC filename |
842 |
|
|
+# |
843 |
|
|
+# Defines IPC server directory and filename used to communicate with the log process. |
844 |
|
|
+ipcfilename = '/tmp/.dguardianipc' |
845 |
|
|
+ |
846 |
|
|
+# URL list IPC filename |
847 |
|
|
+# |
848 |
|
|
+# Defines URL list IPC server directory and filename used to communicate with the URL |
849 |
|
|
+# cache process. |
850 |
|
|
+urlipcfilename = '/tmp/.dguardianurlipc' |
851 |
|
|
+ |
852 |
|
|
+# IP list IPC filename |
853 |
|
|
+# |
854 |
|
|
+# Defines IP list IPC server directory and filename, for communicating with the client |
855 |
|
|
+# IP cache process. |
856 |
|
|
+ipipcfilename = '/tmp/.dguardianipipc' |
857 |
|
|
+ |
858 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename |
859 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename 1969-12-31 19:00:00.000000000 -0500 |
860 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename 2016-05-25 13:14:48.000000000 -0400 |
861 |
|
|
@@ -0,0 +1,5 @@ |
862 |
|
|
+# PID filename |
863 |
|
|
+# |
864 |
|
|
+# Defines process id directory and filename. |
865 |
|
|
+#pidfilename = '/var/run/dansguardian.pid' |
866 |
|
|
+ |
867 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon |
868 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon 1969-12-31 19:00:00.000000000 -0500 |
869 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon 2016-05-25 13:14:48.000000000 -0400 |
870 |
|
|
@@ -0,0 +1,6 @@ |
871 |
|
|
+# Disable daemoning |
872 |
|
|
+# If enabled the process will not fork into the background. |
873 |
|
|
+# It is not usually advantageous to do this. |
874 |
|
|
+# on|off (defaults to off) |
875 |
|
|
+nodaemon = off |
876 |
|
|
+ |
877 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog |
878 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog 1969-12-31 19:00:00.000000000 -0500 |
879 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog 2016-05-25 13:14:48.000000000 -0400 |
880 |
|
|
@@ -0,0 +1,4 @@ |
881 |
|
|
+# Disable logging process |
882 |
|
|
+# on|off (defaults to off) |
883 |
|
|
+nologger = off |
884 |
|
|
+ |
885 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks |
886 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks 1969-12-31 19:00:00.000000000 -0500 |
887 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks 2016-05-25 13:14:48.000000000 -0400 |
888 |
|
|
@@ -0,0 +1,4 @@ |
889 |
|
|
+# Enable logging of "ADs" category blocks |
890 |
|
|
+# on|off (defaults to off) |
891 |
|
|
+logadblocks = off |
892 |
|
|
+ |
893 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent |
894 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent 1969-12-31 19:00:00.000000000 -0500 |
895 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent 2016-05-25 13:14:48.000000000 -0400 |
896 |
|
|
@@ -0,0 +1,5 @@ |
897 |
|
|
+# Enable logging of client User-Agent |
898 |
|
|
+# Some browsers will cause a *lot* of extra information on each line! |
899 |
|
|
+# on|off (defaults to off) |
900 |
|
|
+loguseragent = off |
901 |
|
|
+ |
902 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup |
903 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup 1969-12-31 19:00:00.000000000 -0500 |
904 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup 2016-05-25 13:14:48.000000000 -0400 |
905 |
|
|
@@ -0,0 +1,9 @@ |
906 |
|
|
+# Daemon runas user and group |
907 |
|
|
+# This is the user that DansGuardian runs as. Normally the user/group nobody. |
908 |
|
|
+# Uncomment to use. Defaults to the user set at compile time. |
909 |
|
|
+# Temp files created during virus scanning are given owner and group read |
910 |
|
|
+# permissions; to use content scanners based on external processes, such as |
911 |
|
|
+# clamdscan, the two processes must run with either the same group or user ID. |
912 |
|
|
+#daemonuser = 'dansguardian' |
913 |
|
|
+#daemongroup = 'dansguardian' |
914 |
|
|
+ |
915 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart |
916 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart 1969-12-31 19:00:00.000000000 -0500 |
917 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart 2016-05-25 13:14:48.000000000 -0400 |
918 |
|
|
@@ -0,0 +1,6 @@ |
919 |
|
|
+# Soft restart |
920 |
|
|
+# When on this disables the forced killing off all processes in the process group. |
921 |
|
|
+# This is not to be confused with the -g run time option - they are not related. |
922 |
|
|
+# on|off (defaults to off) |
923 |
|
|
+softrestart = off |
924 |
|
|
+ |
925 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer |
926 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer 1969-12-31 19:00:00.000000000 -0500 |
927 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer 2016-05-25 13:14:48.000000000 -0400 |
928 |
|
|
@@ -0,0 +1,5 @@ |
929 |
|
|
+# Mail program |
930 |
|
|
+# Path (sendmail-compatible) email program, with options. |
931 |
|
|
+# Not used if usesmtp is disabled (filtergroup specific). |
932 |
|
|
+mailer = '/usr/sbin/sendmail -t' |
933 |
|
|
+ |
934 |
|
|
diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro |
935 |
|
|
--- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro 2007-10-29 10:14:12.000000000 -0400 |
936 |
|
|
+++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro 1969-12-31 19:00:00.000000000 -0500 |
937 |
|
|
@@ -1,609 +0,0 @@ |
938 |
|
|
-# DansGuardian config file for version 2.9.9.1, |
939 |
|
|
- |
940 |
|
|
-# **NOTE** as of version 2.7.5 most of the list files are now in dansguardianf1.conf |
941 |
|
|
- |
942 |
|
|
- |
943 |
|
|
-# Web Access Denied Reporting (does not affect logging) |
944 |
|
|
-# |
945 |
|
|
-# -1 = log, but do not block - Stealth mode |
946 |
|
|
-# 0 = just say 'Access Denied' |
947 |
|
|
-# 1 = report why but not what denied phrase |
948 |
|
|
-# 2 = report fully |
949 |
|
|
-# 3 = use HTML template file (accessdeniedaddress ignored) - recommended |
950 |
|
|
-# |
951 |
|
|
-reportinglevel = 3 |
952 |
|
|
- |
953 |
|
|
-# Language dir where languages are stored for internationalisation. |
954 |
|
|
-# The HTML template within this dir is only used when reportinglevel |
955 |
|
|
-# is set to 3. When used, DansGuardian will display the HTML file instead of |
956 |
|
|
-# using the perl cgi script. This option is faster, cleaner |
957 |
|
|
-# and easier to customise the access denied page. |
958 |
|
|
-# The language file is used no matter what setting however. |
959 |
|
|
-# |
960 |
|
|
-languagedir = '/etc/dansguardian/languages' |
961 |
|
|
- |
962 |
|
|
-# language to use from languagedir. |
963 |
|
|
-language = 'ukenglish' |
964 |
|
|
- |
965 |
|
|
-# Logging Settings |
966 |
|
|
-# |
967 |
|
|
-# 0 = none 1 = just denied 2 = all text based 3 = all requests |
968 |
|
|
-loglevel = 2 |
969 |
|
|
- |
970 |
|
|
-# Log Exception Hits |
971 |
|
|
-# Log if an exception (user, ip, URL, phrase) is matched and so |
972 |
|
|
-# the page gets let through. Can be useful for diagnosing |
973 |
|
|
-# why a site gets through the filter. |
974 |
|
|
-# 0 = never log exceptions |
975 |
|
|
-# 1 = log exceptions, but do not explicitly mark them as such |
976 |
|
|
-# 2 = always log & mark exceptions (default) |
977 |
|
|
-logexceptionhits = 2 |
978 |
|
|
- |
979 |
|
|
-# Log File Format |
980 |
|
|
-# 1 = DansGuardian format (space delimited) |
981 |
|
|
-# 2 = CSV-style format |
982 |
|
|
-# 3 = Squid Log File Format |
983 |
|
|
-# 4 = Tab delimited |
984 |
|
|
-logfileformat = 1 |
985 |
|
|
- |
986 |
|
|
-# truncate large items in log lines |
987 |
|
|
-#maxlogitemlength = 400 |
988 |
|
|
- |
989 |
|
|
-# anonymize logs (blank out usernames & IPs) |
990 |
|
|
-#anonymizelogs = on |
991 |
|
|
- |
992 |
|
|
- |
993 |
|
|
-# Syslog logging |
994 |
|
|
-# |
995 |
|
|
-# Use syslog for access logging instead of logging to the file |
996 |
|
|
-# at the defined or built-in "loglocation" |
997 |
|
|
-#syslog = on |
998 |
|
|
- |
999 |
|
|
-# Log file location |
1000 |
|
|
-# |
1001 |
|
|
-# Defines the log directory and filename. |
1002 |
|
|
-#loglocation = '/var/log/dansguardian/access.log' |
1003 |
|
|
- |
1004 |
|
|
- |
1005 |
|
|
-# Statistics log file location |
1006 |
|
|
-# |
1007 |
|
|
-# Defines the stat file directory and filename. |
1008 |
|
|
-# Only used in conjunction with maxips > 0 |
1009 |
|
|
-# Once every 3 minutes, the current number of IPs in the cache, and the most |
1010 |
|
|
-# that have been in the cache since the daemon was started, are written to this |
1011 |
|
|
-# file. IPs persist in the cache for 7 days. |
1012 |
|
|
-#statlocation = '/var/log/dansguardian/stats' |
1013 |
|
|
- |
1014 |
|
|
- |
1015 |
|
|
-# Network Settings |
1016 |
|
|
-# |
1017 |
|
|
-# the IP that DansGuardian listens on. If left blank DansGuardian will |
1018 |
|
|
-# listen on all IPs. That would include all NICs, loopback, modem, etc. |
1019 |
|
|
-# Normally you would have your firewall protecting this, but if you want |
1020 |
|
|
-# you can limit it to a certain IP. To bind to multiple interfaces, |
1021 |
|
|
-# specify each IP on an individual filterip line. |
1022 |
|
|
-filterip = |
1023 |
|
|
- |
1024 |
|
|
-# the port that DansGuardian listens to. |
1025 |
|
|
-filterport = 8080 |
1026 |
|
|
- |
1027 |
|
|
-# the ip of the proxy (default is the loopback - i.e. this server) |
1028 |
|
|
-proxyip = 127.0.0.1 |
1029 |
|
|
- |
1030 |
|
|
-# the port DansGuardian connects to proxy on |
1031 |
|
|
-proxyport = 3128 |
1032 |
|
|
- |
1033 |
|
|
-# accessdeniedaddress is the address of your web server to which the cgi |
1034 |
|
|
-# dansguardian reporting script was copied. Only used in reporting levels 1 and 2. |
1035 |
|
|
-# |
1036 |
|
|
-# This webserver must be either: |
1037 |
|
|
-# 1. Non-proxied. Either a machine on the local network, or listed as an exception |
1038 |
|
|
-# in your browser's proxy configuration. |
1039 |
|
|
-# 2. Added to the exceptionsitelist. Option 1 is preferable; this option is |
1040 |
|
|
-# only for users using both transparent proxying and a non-local server |
1041 |
|
|
-# to host this script. |
1042 |
|
|
-# |
1043 |
|
|
-# Individual filter groups can override this setting in their own configuration. |
1044 |
|
|
-# |
1045 |
|
|
-accessdeniedaddress = 'http://YOURSERVER.YOURDOMAIN/cgi-bin/dansguardian.pl' |
1046 |
|
|
- |
1047 |
|
|
-# Non standard delimiter (only used with accessdeniedaddress) |
1048 |
|
|
-# To help preserve the full banned URL, including parameters, the variables |
1049 |
|
|
-# passed into the access denied CGI are separated using non-standard |
1050 |
|
|
-# delimiters. This can be useful to ensure correct operation of the filter |
1051 |
|
|
-# bypass modes. Parameters are split using "::" in place of "&", and "==" in |
1052 |
|
|
-# place of "=". |
1053 |
|
|
-# Default is enabled, but to go back to the standard mode, disable it. |
1054 |
|
|
-nonstandarddelimiter = on |
1055 |
|
|
- |
1056 |
|
|
- |
1057 |
|
|
- |
1058 |
|
|
-# Banned image replacement |
1059 |
|
|
-# Images that are banned due to domain/url/etc reasons including those |
1060 |
|
|
-# in the adverts blacklists can be replaced by an image. This will, |
1061 |
|
|
-# for example, hide images from advert sites and remove broken image |
1062 |
|
|
-# icons from banned domains. |
1063 |
|
|
-# on (default) | off |
1064 |
|
|
-usecustombannedimage = on |
1065 |
|
|
-custombannedimagefile = '/etc/dansguardian/transparent1x1.gif' |
1066 |
|
|
- |
1067 |
|
|
- |
1068 |
|
|
- |
1069 |
|
|
-# Filter groups options |
1070 |
|
|
-# filtergroups sets the number of filter groups. A filter group is a set of content |
1071 |
|
|
-# filtering options you can apply to a group of users. The value must be 1 or more. |
1072 |
|
|
-# DansGuardian will automatically look for dansguardianfN.conf where N is the filter |
1073 |
|
|
-# group. To assign users to groups use the filtergroupslist option. All users default |
1074 |
|
|
-# to filter group 1. You must have some sort of authentication to be able to map users |
1075 |
|
|
-# to a group. The more filter groups the more copies of the lists will be in RAM so |
1076 |
|
|
-# use as few as possible. |
1077 |
|
|
-filtergroups = 1 |
1078 |
|
|
-filtergroupslist = '/etc/dansguardian/lists/filtergroupslist' |
1079 |
|
|
- |
1080 |
|
|
- |
1081 |
|
|
- |
1082 |
|
|
-# Authentication files location |
1083 |
|
|
-bannediplist = '/etc/dansguardian/lists/bannediplist' |
1084 |
|
|
-exceptioniplist = '/etc/dansguardian/lists/exceptioniplist' |
1085 |
|
|
- |
1086 |
|
|
- |
1087 |
|
|
- |
1088 |
|
|
-# Show weighted phrases found |
1089 |
|
|
-# If enabled then the phrases found that made up the total which excedes |
1090 |
|
|
-# the naughtyness limit will be logged and, if the reporting level is |
1091 |
|
|
-# high enough, reported. on | off |
1092 |
|
|
-showweightedfound = on |
1093 |
|
|
- |
1094 |
|
|
-# Weighted phrase mode |
1095 |
|
|
-# There are 3 possible modes of operation: |
1096 |
|
|
-# 0 = off = do not use the weighted phrase feature. |
1097 |
|
|
-# 1 = on, normal = normal weighted phrase operation. |
1098 |
|
|
-# 2 = on, singular = each weighted phrase found only counts once on a page. |
1099 |
|
|
-# |
1100 |
|
|
-weightedphrasemode = 2 |
1101 |
|
|
- |
1102 |
|
|
- |
1103 |
|
|
- |
1104 |
|
|
-# Positive (clean) result caching for URLs |
1105 |
|
|
-# Caches good pages so they don't need to be scanned again. |
1106 |
|
|
-# It also works with AV plugins. |
1107 |
|
|
-# 0 = off (recommended for ISPs with users with disimilar browsing) |
1108 |
|
|
-# 1000 = recommended for most users |
1109 |
|
|
-# 5000 = suggested max upper limit |
1110 |
|
|
-# If you're using an AV plugin then use at least 5000. |
1111 |
|
|
-urlcachenumber = 1000 |
1112 |
|
|
-# |
1113 |
|
|
-# Age before they are stale and should be ignored in seconds |
1114 |
|
|
-# 0 = never |
1115 |
|
|
-# 900 = recommended = 15 mins |
1116 |
|
|
-urlcacheage = 900 |
1117 |
|
|
- |
1118 |
|
|
- |
1119 |
|
|
- |
1120 |
|
|
-# Clean cache for content (AV) scan results |
1121 |
|
|
-# By default, to save CPU, files scanned and found to be |
1122 |
|
|
-# clean are inserted into the clean cache and NOT scanned |
1123 |
|
|
-# again for a while. If you don't like this then choose |
1124 |
|
|
-# to disable it. |
1125 |
|
|
-# (on|off) default = on. |
1126 |
|
|
-scancleancache = on |
1127 |
|
|
- |
1128 |
|
|
- |
1129 |
|
|
- |
1130 |
|
|
-# Smart, Raw and Meta/Title phrase content filtering options |
1131 |
|
|
-# Smart is where the multiple spaces and HTML are removed before phrase filtering |
1132 |
|
|
-# Raw is where the raw HTML including meta tags are phrase filtered |
1133 |
|
|
-# Meta/Title is where only meta and title tags are phrase filtered (v. quick) |
1134 |
|
|
-# CPU usage can be effectively halved by using setting 0 or 1 compared to 2 |
1135 |
|
|
-# 0 = raw only |
1136 |
|
|
-# 1 = smart only |
1137 |
|
|
-# 2 = both of the above (default) |
1138 |
|
|
-# 3 = meta/title |
1139 |
|
|
-phrasefiltermode = 2 |
1140 |
|
|
- |
1141 |
|
|
-# Lower casing options |
1142 |
|
|
-# When a document is scanned the uppercase letters are converted to lower case |
1143 |
|
|
-# in order to compare them with the phrases. However this can break Big5 and |
1144 |
|
|
-# other 16-bit texts. If needed preserve the case. As of version 2.7.0 accented |
1145 |
|
|
-# characters are supported. |
1146 |
|
|
-# 0 = force lower case (default) |
1147 |
|
|
-# 1 = do not change case |
1148 |
|
|
-# 2 = scan first in lower case, then in original case |
1149 |
|
|
-preservecase = 0 |
1150 |
|
|
- |
1151 |
|
|
-# Note: |
1152 |
|
|
-# If phrasefiltermode and preserve case are both 2, this equates to 4 phrase |
1153 |
|
|
-# filtering passes. If you have a large enough userbase for this to be a |
1154 |
|
|
-# worry, and need to filter pages in exotic character encodings, it may be |
1155 |
|
|
-# better to run two instances on separate servers: one with preservecase 1 |
1156 |
|
|
-# (and possibly forcequicksearch 1) and non ASCII/UTF-8 phrase lists, and one |
1157 |
|
|
-# with preservecase 0 and ASCII/UTF-8 lists. |
1158 |
|
|
- |
1159 |
|
|
- |
1160 |
|
|
- |
1161 |
|
|
-# Hex decoding options |
1162 |
|
|
-# When a document is scanned it can optionally convert %XX to chars. |
1163 |
|
|
-# If you find documents are getting past the phrase filtering due to encoding |
1164 |
|
|
-# then enable. However this can break Big5 and other 16-bit texts. |
1165 |
|
|
-# off = disabled (default) |
1166 |
|
|
-# on = enabled |
1167 |
|
|
-hexdecodecontent = off |
1168 |
|
|
- |
1169 |
|
|
- |
1170 |
|
|
- |
1171 |
|
|
-# Force Quick Search rather than DFA search algorithm |
1172 |
|
|
-# The current DFA implementation is not totally 16-bit character compatible |
1173 |
|
|
-# but is used by default as it handles large phrase lists much faster. |
1174 |
|
|
-# If you wish to use a large number of 16-bit character phrases then |
1175 |
|
|
-# enable this option. |
1176 |
|
|
-# off (default) | on (Big5 compatible) |
1177 |
|
|
-forcequicksearch = off |
1178 |
|
|
- |
1179 |
|
|
- |
1180 |
|
|
- |
1181 |
|
|
-# Reverse lookups for banned site and URLs. |
1182 |
|
|
-# If set to on, DansGuardian will look up the forward DNS for an IP URL |
1183 |
|
|
-# address and search for both in the banned site and URL lists. This would |
1184 |
|
|
-# prevent a user from simply entering the IP for a banned address. |
1185 |
|
|
-# It will reduce searching speed somewhat so unless you have a local caching |
1186 |
|
|
-# DNS server, leave it off and use the Blanket IP Block option in the |
1187 |
|
|
-# bannedsitelist file instead. |
1188 |
|
|
-reverseaddresslookups = off |
1189 |
|
|
- |
1190 |
|
|
- |
1191 |
|
|
- |
1192 |
|
|
-# Reverse lookups for banned and exception IP lists. |
1193 |
|
|
-# If set to on, DansGuardian will look up the forward DNS for the IP |
1194 |
|
|
-# of the connecting computer. This means you can put in hostnames in |
1195 |
|
|
-# the exceptioniplist and bannediplist. |
1196 |
|
|
-# If a client computer is matched against an IP given in the lists, then the |
1197 |
|
|
-# IP will be recorded in any log entries; if forward DNS is successful and a |
1198 |
|
|
-# match occurs against a hostname, the hostname will be logged instead. |
1199 |
|
|
-# It will reduce searching speed somewhat so unless you have a local DNS server, |
1200 |
|
|
-# leave it off. |
1201 |
|
|
-reverseclientiplookups = off |
1202 |
|
|
- |
1203 |
|
|
- |
1204 |
|
|
-# Perform reverse lookups on client IPs for successful requests. |
1205 |
|
|
-# If set to on, DansGuardian will look up the forward DNS for the IP |
1206 |
|
|
-# of the connecting computer, and log host names (where available) rather than |
1207 |
|
|
-# IPs against requests. |
1208 |
|
|
-# This is not dependent on reverseclientiplookups being enabled; however, if it |
1209 |
|
|
-# is, enabling this option does not incur any additional forward DNS requests. |
1210 |
|
|
-logclienthostnames = off |
1211 |
|
|
- |
1212 |
|
|
- |
1213 |
|
|
-# Build bannedsitelist and bannedurllist cache files. |
1214 |
|
|
-# This will compare the date stamp of the list file with the date stamp of |
1215 |
|
|
-# the cache file and will recreate as needed. |
1216 |
|
|
-# If a bsl or bul .processed file exists, then that will be used instead. |
1217 |
|
|
-# It will increase process start speed by 300%. On slow computers this will |
1218 |
|
|
-# be significant. Fast computers do not need this option. on | off |
1219 |
|
|
-createlistcachefiles = on |
1220 |
|
|
- |
1221 |
|
|
- |
1222 |
|
|
- |
1223 |
|
|
-# POST protection (web upload and forms) |
1224 |
|
|
-# does not block forms without any file upload, i.e. this is just for |
1225 |
|
|
-# blocking or limiting uploads |
1226 |
|
|
-# measured in kibibytes after MIME encoding and header bumph |
1227 |
|
|
-# use 0 for a complete block |
1228 |
|
|
-# use higher (e.g. 512 = 512Kbytes) for limiting |
1229 |
|
|
-# use -1 for no blocking |
1230 |
|
|
-#maxuploadsize = 512 |
1231 |
|
|
-#maxuploadsize = 0 |
1232 |
|
|
-maxuploadsize = -1 |
1233 |
|
|
- |
1234 |
|
|
- |
1235 |
|
|
- |
1236 |
|
|
-# Max content filter size |
1237 |
|
|
-# Sometimes web servers label binary files as text which can be very |
1238 |
|
|
-# large which causes a huge drain on memory and cpu resources. |
1239 |
|
|
-# To counter this, you can limit the size of the document to be |
1240 |
|
|
-# filtered and get it to just pass it straight through. |
1241 |
|
|
-# This setting also applies to content regular expression modification. |
1242 |
|
|
-# The value must not be higher than maxcontentramcachescansize |
1243 |
|
|
-# The size is in Kibibytes - eg 2048 = 2Mb |
1244 |
|
|
-# use 0 to set it to maxcontentramcachescansize |
1245 |
|
|
-maxcontentfiltersize = 256 |
1246 |
|
|
- |
1247 |
|
|
- |
1248 |
|
|
- |
1249 |
|
|
-# Max content ram cache scan size |
1250 |
|
|
-# This is only used if you use a content scanner plugin such as AV |
1251 |
|
|
-# This is the max size of file that DG will download and cache |
1252 |
|
|
-# in RAM. After this limit is reached it will cache to disk |
1253 |
|
|
-# This value must be less than or equal to maxcontentfilecachescansize. |
1254 |
|
|
-# The size is in Kibibytes - eg 10240 = 10Mb |
1255 |
|
|
-# use 0 to set it to maxcontentfilecachescansize |
1256 |
|
|
-# This option may be ignored by the configured download manager. |
1257 |
|
|
-maxcontentramcachescansize = 2000 |
1258 |
|
|
- |
1259 |
|
|
- |
1260 |
|
|
- |
1261 |
|
|
-# Max content file cache scan size |
1262 |
|
|
-# This is only used if you use a content scanner plugin such as AV |
1263 |
|
|
-# This is the max size file that DG will download |
1264 |
|
|
-# so that it can be scanned or virus checked. |
1265 |
|
|
-# This value must be greater or equal to maxcontentramcachescansize. |
1266 |
|
|
-# The size is in Kibibytes - eg 10240 = 10Mb |
1267 |
|
|
-maxcontentfilecachescansize = 20000 |
1268 |
|
|
- |
1269 |
|
|
- |
1270 |
|
|
- |
1271 |
|
|
-# File cache dir |
1272 |
|
|
-# Where DG will download files to be scanned if too large for the |
1273 |
|
|
-# RAM cache. |
1274 |
|
|
-filecachedir = '/tmp' |
1275 |
|
|
- |
1276 |
|
|
- |
1277 |
|
|
- |
1278 |
|
|
-# Delete file cache after user completes download |
1279 |
|
|
-# When a file gets save to temp it stays there until it is deleted. |
1280 |
|
|
-# You can choose to have the file deleted when the user makes a sucessful |
1281 |
|
|
-# download. This will mean if they click on the link to download from |
1282 |
|
|
-# the temp store a second time it will give a 404 error. |
1283 |
|
|
-# You should configure something to delete old files in temp to stop it filling up. |
1284 |
|
|
-# on|off (defaults to on) |
1285 |
|
|
-deletedownloadedtempfiles = on |
1286 |
|
|
- |
1287 |
|
|
- |
1288 |
|
|
- |
1289 |
|
|
-# Initial Trickle delay |
1290 |
|
|
-# This is the number of seconds a browser connection is left waiting |
1291 |
|
|
-# before first being sent *something* to keep it alive. The |
1292 |
|
|
-# *something* depends on the download manager chosen. |
1293 |
|
|
-# Do not choose a value too low or normal web pages will be affected. |
1294 |
|
|
-# A value between 20 and 110 would be sensible |
1295 |
|
|
-# This may be ignored by the configured download manager. |
1296 |
|
|
-initialtrickledelay = 20 |
1297 |
|
|
- |
1298 |
|
|
- |
1299 |
|
|
- |
1300 |
|
|
-# Trickle delay |
1301 |
|
|
-# This is the number of seconds a browser connection is left waiting |
1302 |
|
|
-# before being sent more *something* to keep it alive. The |
1303 |
|
|
-# *something* depends on the download manager chosen. |
1304 |
|
|
-# This may be ignored by the configured download manager. |
1305 |
|
|
-trickledelay = 10 |
1306 |
|
|
- |
1307 |
|
|
- |
1308 |
|
|
- |
1309 |
|
|
-# Download Managers |
1310 |
|
|
-# These handle downloads of files to be filtered and scanned. |
1311 |
|
|
-# They differ in the method they deal with large downloads. |
1312 |
|
|
-# Files usually need to be downloaded 100% before they can be |
1313 |
|
|
-# filtered and scanned before being sent on to the browser. |
1314 |
|
|
-# Normally the browser can just wait, but with content scanning, |
1315 |
|
|
-# for example to AV, the browser may timeout or the user may get |
1316 |
|
|
-# confused so the download manager has to do some sort of |
1317 |
|
|
-# 'keep alive'. |
1318 |
|
|
-# |
1319 |
|
|
-# There are various methods possible but not all are included. |
1320 |
|
|
-# The author does not have the time to write them all so I have |
1321 |
|
|
-# included a plugin systam. Also, not all methods work with all |
1322 |
|
|
-# browsers and clients. Specifically some fancy methods don't |
1323 |
|
|
-# work with software that downloads updates. To solve this, |
1324 |
|
|
-# each plugin can support a regular expression for matching |
1325 |
|
|
-# the client's user-agent string, and lists of the mime types |
1326 |
|
|
-# and extensions it should manage. |
1327 |
|
|
-# |
1328 |
|
|
-# Note that these are the matching methods provided by the base plugin |
1329 |
|
|
-# code, and individual plugins may override or add to them. |
1330 |
|
|
-# See the individual plugin conf files for supported options. |
1331 |
|
|
-# |
1332 |
|
|
-# The plugins are matched in the order you specify and the last |
1333 |
|
|
-# one is forced to match as the default, regardless of user agent |
1334 |
|
|
-# and other matching mechanisms. |
1335 |
|
|
-# |
1336 |
|
|
-downloadmanager = '/etc/dansguardian/downloadmanagers/fancy.conf' |
1337 |
|
|
-#downloadmanager = '/etc/dansguardian/downloadmanagers/trickle.conf' |
1338 |
|
|
-downloadmanager = '/etc/dansguardian/downloadmanagers/default.conf' |
1339 |
|
|
- |
1340 |
|
|
- |
1341 |
|
|
- |
1342 |
|
|
-# Content Scanners (Also known as AV scanners) |
1343 |
|
|
-# These are plugins that scan the content of all files your browser fetches |
1344 |
|
|
-# for example to AV scan. The options are limitless. Eventually all of |
1345 |
|
|
-# DansGuardian will be plugin based. You can have more than one content |
1346 |
|
|
-# scanner. The plugins are run in the order you specify. |
1347 |
|
|
-# This is one of the few places you can have multiple options of the same name. |
1348 |
|
|
-# |
1349 |
|
|
-# Some of the scanner(s) require 3rd party software and libraries eg clamav. |
1350 |
|
|
-# See the individual plugin conf file for more options (if any). |
1351 |
|
|
-# |
1352 |
|
|
-#contentscanner = '/etc/dansguardian/contentscanners/clamav.conf' |
1353 |
|
|
-#contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf' |
1354 |
|
|
-#!! Unimplemented !! contentscanner = '/etc/dansguardian/contentscanners/kavav.conf' |
1355 |
|
|
-#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/kavdscan.conf' |
1356 |
|
|
-#contentscanner = '/etc/dansguardian/contentscanners/icapscan.conf' |
1357 |
|
|
-#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/commandlinescan.conf' |
1358 |
|
|
- |
1359 |
|
|
- |
1360 |
|
|
- |
1361 |
|
|
-# Content scanner timeout |
1362 |
|
|
-# Some of the content scanners support using a timeout value to stop |
1363 |
|
|
-# processing (eg AV scanning) the file if it takes too long. |
1364 |
|
|
-# If supported this will be used. |
1365 |
|
|
-# The default of 60 seconds is probably reasonable. |
1366 |
|
|
-contentscannertimeout = 60 |
1367 |
|
|
- |
1368 |
|
|
- |
1369 |
|
|
- |
1370 |
|
|
-# Content scan exceptions |
1371 |
|
|
-# If 'on' exception sites, urls, users etc will be scanned |
1372 |
|
|
-# This is probably not desirable behavour as exceptions are |
1373 |
|
|
-# supposed to be trusted and will increase load. |
1374 |
|
|
-# Correct use of grey lists are a better idea. |
1375 |
|
|
-# (on|off) default = off |
1376 |
|
|
-contentscanexceptions = off |
1377 |
|
|
- |
1378 |
|
|
- |
1379 |
|
|
- |
1380 |
|
|
-# Auth plugins |
1381 |
|
|
-# These replace the usernameidmethod* options in previous versions. They |
1382 |
|
|
-# handle the extraction of client usernames from various sources, such as |
1383 |
|
|
-# Proxy-Authorisation headers and ident servers, enabling requests to be |
1384 |
|
|
-# handled according to the settings of the user's filter group. |
1385 |
|
|
-# Multiple plugins can be specified, and will be queried in order until one |
1386 |
|
|
-# of them either finds a username or throws an error. For example, if Squid |
1387 |
|
|
-# is configured with both NTLM and Basic auth enabled, and both the 'proxy-basic' |
1388 |
|
|
-# and 'proxy-ntlm' auth plugins are enabled here, then clients which do not support |
1389 |
|
|
-# NTLM can fall back to Basic without sacrificing access rights. |
1390 |
|
|
-# |
1391 |
|
|
-# If you do not use multiple filter groups, you need not specify this option. |
1392 |
|
|
-# |
1393 |
|
|
-#authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf' |
1394 |
|
|
-#authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf' |
1395 |
|
|
-#authplugin = '/etc/dansguardian/authplugins/ident.conf' |
1396 |
|
|
-#authplugin = '/etc/dansguardian/authplugins/ip.conf' |
1397 |
|
|
- |
1398 |
|
|
- |
1399 |
|
|
- |
1400 |
|
|
-# Re-check replaced URLs |
1401 |
|
|
-# As a matter of course, URLs undergo regular expression search/replace (urlregexplist) |
1402 |
|
|
-# *after* checking the exception site/URL/regexpURL lists, but *before* checking against |
1403 |
|
|
-# the banned site/URL lists, allowing certain requests that would be matched against the |
1404 |
|
|
-# latter in their original state to effectively be converted into grey requests. |
1405 |
|
|
-# With this option enabled, the exception site/URL/regexpURL lists are also re-checked |
1406 |
|
|
-# after replacement, making it possible for URL replacement to trigger exceptions based |
1407 |
|
|
-# on them. |
1408 |
|
|
-# Defaults to off. |
1409 |
|
|
-recheckreplacedurls = off |
1410 |
|
|
- |
1411 |
|
|
- |
1412 |
|
|
- |
1413 |
|
|
-# Misc settings |
1414 |
|
|
- |
1415 |
|
|
-# if on it adds an X-Forwarded-For: <clientip> to the HTTP request |
1416 |
|
|
-# header. This may help solve some problem sites that need to know the |
1417 |
|
|
-# source ip. on | off |
1418 |
|
|
-forwardedfor = off |
1419 |
|
|
- |
1420 |
|
|
- |
1421 |
|
|
-# if on it uses the X-Forwarded-For: <clientip> to determine the client |
1422 |
|
|
-# IP. This is for when you have squid between the clients and DansGuardian. |
1423 |
|
|
-# Warning - headers are easily spoofed. on | off |
1424 |
|
|
-usexforwardedfor = off |
1425 |
|
|
- |
1426 |
|
|
- |
1427 |
|
|
-# if on it logs some debug info regarding fork()ing and accept()ing which |
1428 |
|
|
-# can usually be ignored. These are logged by syslog. It is safe to leave |
1429 |
|
|
-# it on or off |
1430 |
|
|
-logconnectionhandlingerrors = on |
1431 |
|
|
- |
1432 |
|
|
- |
1433 |
|
|
- |
1434 |
|
|
-# Fork pool options |
1435 |
|
|
- |
1436 |
|
|
-# If on, this causes DG to write to the log file whenever child processes are |
1437 |
|
|
-# created or destroyed (other than by crashes). This information can help in |
1438 |
|
|
-# understanding and tuning the following parameters, but is not generally |
1439 |
|
|
-# useful in production. |
1440 |
|
|
-logchildprocesshandling = off |
1441 |
|
|
- |
1442 |
|
|
-# sets the maximum number of processes to spawn to handle the incoming |
1443 |
|
|
-# connections. Max value usually 250 depending on OS. |
1444 |
|
|
-# On large sites you might want to try 180. |
1445 |
|
|
-maxchildren = 120 |
1446 |
|
|
- |
1447 |
|
|
- |
1448 |
|
|
-# sets the minimum number of processes to spawn to handle the incoming connections. |
1449 |
|
|
-# On large sites you might want to try 32. |
1450 |
|
|
-minchildren = 8 |
1451 |
|
|
- |
1452 |
|
|
- |
1453 |
|
|
-# sets the minimum number of processes to be kept ready to handle connections. |
1454 |
|
|
-# On large sites you might want to try 8. |
1455 |
|
|
-minsparechildren = 4 |
1456 |
|
|
- |
1457 |
|
|
- |
1458 |
|
|
-# sets the minimum number of processes to spawn when it runs out |
1459 |
|
|
-# On large sites you might want to try 10. |
1460 |
|
|
-preforkchildren = 6 |
1461 |
|
|
- |
1462 |
|
|
- |
1463 |
|
|
-# sets the maximum number of processes to have doing nothing. |
1464 |
|
|
-# When this many are spare it will cull some of them. |
1465 |
|
|
-# On large sites you might want to try 64. |
1466 |
|
|
-maxsparechildren = 32 |
1467 |
|
|
- |
1468 |
|
|
- |
1469 |
|
|
-# sets the maximum age of a child process before it croaks it. |
1470 |
|
|
-# This is the number of connections they handle before exiting. |
1471 |
|
|
-# On large sites you might want to try 10000. |
1472 |
|
|
-maxagechildren = 500 |
1473 |
|
|
- |
1474 |
|
|
- |
1475 |
|
|
-# Sets the maximum number client IP addresses allowed to connect at once. |
1476 |
|
|
-# Use this to set a hard limit on the number of users allowed to concurrently |
1477 |
|
|
-# browse the web. Set to 0 for no limit, and to disable the IP cache process. |
1478 |
|
|
-maxips = 0 |
1479 |
|
|
- |
1480 |
|
|
- |
1481 |
|
|
- |
1482 |
|
|
-# Process options |
1483 |
|
|
-# (Change these only if you really know what you are doing). |
1484 |
|
|
-# These options allow you to run multiple instances of DansGuardian on a single machine. |
1485 |
|
|
-# Remember to edit the log file path above also if that is your intention. |
1486 |
|
|
- |
1487 |
|
|
-# IPC filename |
1488 |
|
|
-# |
1489 |
|
|
-# Defines IPC server directory and filename used to communicate with the log process. |
1490 |
|
|
-ipcfilename = '/tmp/.dguardianipc' |
1491 |
|
|
- |
1492 |
|
|
-# URL list IPC filename |
1493 |
|
|
-# |
1494 |
|
|
-# Defines URL list IPC server directory and filename used to communicate with the URL |
1495 |
|
|
-# cache process. |
1496 |
|
|
-urlipcfilename = '/tmp/.dguardianurlipc' |
1497 |
|
|
- |
1498 |
|
|
-# IP list IPC filename |
1499 |
|
|
-# |
1500 |
|
|
-# Defines IP list IPC server directory and filename, for communicating with the client |
1501 |
|
|
-# IP cache process. |
1502 |
|
|
-ipipcfilename = '/tmp/.dguardianipipc' |
1503 |
|
|
- |
1504 |
|
|
-# PID filename |
1505 |
|
|
-# |
1506 |
|
|
-# Defines process id directory and filename. |
1507 |
|
|
-#pidfilename = '/var/run/dansguardian.pid' |
1508 |
|
|
- |
1509 |
|
|
-# Disable daemoning |
1510 |
|
|
-# If enabled the process will not fork into the background. |
1511 |
|
|
-# It is not usually advantageous to do this. |
1512 |
|
|
-# on|off (defaults to off) |
1513 |
|
|
-nodaemon = off |
1514 |
|
|
- |
1515 |
|
|
-# Disable logging process |
1516 |
|
|
-# on|off (defaults to off) |
1517 |
|
|
-nologger = off |
1518 |
|
|
- |
1519 |
|
|
-# Enable logging of "ADs" category blocks |
1520 |
|
|
-# on|off (defaults to off) |
1521 |
|
|
-logadblocks = off |
1522 |
|
|
- |
1523 |
|
|
-# Enable logging of client User-Agent |
1524 |
|
|
-# Some browsers will cause a *lot* of extra information on each line! |
1525 |
|
|
-# on|off (defaults to off) |
1526 |
|
|
-loguseragent = off |
1527 |
|
|
- |
1528 |
|
|
-# Daemon runas user and group |
1529 |
|
|
-# This is the user that DansGuardian runs as. Normally the user/group nobody. |
1530 |
|
|
-# Uncomment to use. Defaults to the user set at compile time. |
1531 |
|
|
-# Temp files created during virus scanning are given owner and group read |
1532 |
|
|
-# permissions; to use content scanners based on external processes, such as |
1533 |
|
|
-# clamdscan, the two processes must run with either the same group or user ID. |
1534 |
|
|
-#daemonuser = 'clamav' |
1535 |
|
|
-#daemongroup = 'clamav' |
1536 |
|
|
- |
1537 |
|
|
-# Soft restart |
1538 |
|
|
-# When on this disables the forced killing off all processes in the process group. |
1539 |
|
|
-# This is not to be confused with the -g run time option - they are not related. |
1540 |
|
|
-# on|off (defaults to off) |
1541 |
|
|
-softrestart = off |
1542 |
|
|
- |
1543 |
|
|
-# Mail program |
1544 |
|
|
-# Path (sendmail-compatible) email program, with options. |
1545 |
|
|
-# Not used if usesmtp is disabled (filtergroup specific). |
1546 |
|
|
-mailer = '/usr/sbin/sendmail -t' |