/[smecontribs]/rpms/smeserver-dansguardian-panel/contribs9/smeserver-dansguardian-panel-2.11-MainConfigTemplates.patch
ViewVC logotype

Contents of /rpms/smeserver-dansguardian-panel/contribs9/smeserver-dansguardian-panel-2.11-MainConfigTemplates.patch

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph


Revision 1.1 - (show annotations) (download)
Thu May 26 08:27:30 2016 UTC (8 years, 6 months ago) by unnilennium
Branch: MAIN
CVS Tags: smeserver-dansguardian-panel-2_11-15, smeserver-dansguardian-panel-2_11-14, smeserver-dansguardian-panel-2_11-17, smeserver-dansguardian-panel-2_11-16, smeserver-dansguardian-panel-2_11-10, smeserver-dansguardian-panel-2_11-13, smeserver-dansguardian-panel-2_11-12, smeserver-dansguardian-panel-2_11-9, smeserver-dansguardian-panel-2_11-8, smeserver-dansguardian-panel--, smeserver-dansguardian-panel-2_11-7, HEAD
* Thu May 26 2016 Jean-Philipe Pialasse <tests@pialasse.com> 2.11-7.sme
- fix needing new dansguardian.conf template [SME: 9526]
- thank you to Seve Semple to parse the file
- apply locale 2016-05-26 patch

1 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header
2 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header 1969-12-31 19:00:00.000000000 -0500
3 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/010header 2016-05-26 03:19:40.604000000 -0400
4 @@ -0,0 +1,11 @@
5 +# DansGuardian config file for version 2.10.1.1
6 +
7 +# **NOTE** as of version 2.7.5 most of the list files are now in dansguardianf1.conf
8 +{
9 + use esmith::config;
10 + use esmith::db;
11 + our %conf;
12 + tie %conf, 'esmith::config';
13 + our %dungog;
14 + tie %dungog, 'esmith::config', '/home/e-smith/db/dungog';
15 +}
16 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel
17 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel 1969-12-31 19:00:00.000000000 -0500
18 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/015reportinglevel 2016-05-26 03:47:07.122000000 -0400
19 @@ -0,0 +1,12 @@
20 +# Web Access Denied Reporting (does not affect logging)
21 +#
22 +# -1 = log, but do not block - Stealth mode
23 +# 0 = just say 'Access Denied'
24 +# 1 = report why but not what denied phrase
25 +# 2 = report fully
26 +# 3 = use HTML template file (accessdeniedaddress ignored) - recommended
27 +#
28 +{
29 + my $reportinglevel = db_get_prop(\%dungog, 'dansguardian', "reportinglevel") || '1';
30 + $OUT = "reportinglevel = $reportinglevel\n";
31 +}
32 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir
33 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir 1969-12-31 19:00:00.000000000 -0500
34 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/020languagedir 2016-05-25 13:14:48.000000000 -0400
35 @@ -0,0 +1,9 @@
36 +# Language dir where languages are stored for internationalisation.
37 +# The HTML template within this dir is only used when reportinglevel
38 +# is set to 3. When used, DansGuardian will display the HTML file instead of
39 +# using the perl cgi script. This option is faster, cleaner
40 +# and easier to customise the access denied page.
41 +# The language file is used no matter what setting however.
42 +#
43 +languagedir = '/usr/share/dansguardian/languages'
44 +
45 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language
46 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language 1969-12-31 19:00:00.000000000 -0500
47 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/025language 2016-05-26 04:21:50.518000000 -0400
48 @@ -0,0 +1,11 @@
49 +# language to use from languagedir.
50 +language = 'ukenglish'
51 +{
52 + my $language = db_get_prop(\%dungog, 'dansguardian', "language") || 'ukenglish';
53 + $OUT = "language = '$language'\n";
54 + if (-e "/etc/dansguardian/languages/$language/templatef0.html")
55 + {
56 + $OUT .= "htmltemplate = templatef0.html\n";
57 + }
58 +}
59 +
60 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings
61 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings 1969-12-31 19:00:00.000000000 -0500
62 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/030loggingsettings 2016-05-26 04:16:59.629000000 -0400
63 @@ -0,0 +1,55 @@
64 +# Logging Settings
65 +#
66 +# 0 = none 1 = just denied 2 = all text based 3 = all requests
67 +{
68 + my $loglevel = db_get_prop(\%dungog, 'dansguardian', "loglevel") || '2';
69 + $OUT = "loglevel = $loglevel\n";
70 +}
71 +
72 +# Log Exception Hits
73 +# Log if an exception (user, ip, URL, phrase) is matched and so
74 +# the page gets let through. Can be useful for diagnosing
75 +# why a site gets through the filter.
76 +# 0 = never log exceptions
77 +# 1 = log exceptions, but do not explicitly mark them as such
78 +# 2 = always log & mark exceptions (default)
79 +logexceptionhits = 2
80 +
81 +# Log File Format
82 +# 1 = DansGuardian format (space delimited)
83 +# 2 = CSV-style format
84 +# 3 = Squid Log File Format
85 +# 4 = Tab delimited
86 +{
87 + my $logfileformat = db_get_prop(\%dungog, 'dansguardian', "logfileformat") || '3';
88 + $OUT = "logfileformat = $logfileformat\n";
89 +}
90 +
91 +# truncate large items in log lines
92 +#maxlogitemlength = 400
93 +
94 +# anonymize logs (blank out usernames & IPs)
95 +#anonymizelogs = on
96 +
97 +
98 +# Syslog logging
99 +#
100 +# Use syslog for access logging instead of logging to the file
101 +# at the defined or built-in "loglocation"
102 +#syslog = on
103 +
104 +# Log file location
105 +#
106 +# Defines the log directory and filename.
107 +#loglocation = '/var/log/dansguardian/access.log'
108 +
109 +
110 +# Statistics log file location
111 +#
112 +# Defines the stat file directory and filename.
113 +# Only used in conjunction with maxips > 0
114 +# Once every 3 minutes, the current number of IPs in the cache, and the most
115 +# that have been in the cache since the daemon was started, are written to this
116 +# file. IPs persist in the cache for 7 days.
117 +#statlocation = '/var/log/dansguardian/stats'
118 +
119 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings
120 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings 1969-12-31 19:00:00.000000000 -0500
121 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/035networksettings 2016-05-25 13:14:48.000000000 -0400
122 @@ -0,0 +1,9 @@
123 +# Network Settings
124 +#
125 +# the IP that DansGuardian listens on. If left blank DansGuardian will
126 +# listen on all IPs. That would include all NICs, loopback, modem, etc.
127 +# Normally you would have your firewall protecting this, but if you want
128 +# you can limit it to a certain IP. To bind to multiple interfaces,
129 +# specify each IP on an individual filterip line.
130 +filterip =
131 +
132 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport
133 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport 1969-12-31 19:00:00.000000000 -0500
134 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/040listenport 2016-05-26 03:21:16.515000000 -0400
135 @@ -0,0 +1,6 @@
136 +# the port that DansGuardian listens to.
137 +{
138 + my $port = db_get_prop(\%dungog, 'dansguardian', 'port') || '8080';
139 + $OUT = "filterport = $port\n";
140 +}
141 +
142 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop
143 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop 1969-12-31 19:00:00.000000000 -0500
144 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/045proxyloop 2016-05-25 13:14:48.000000000 -0400
145 @@ -0,0 +1,6 @@
146 +# the ip of the proxy (default is the loopback - i.e. this server)
147 +proxyip = 127.0.0.1
148 +
149 +# the port DansGuardian connects to proxy on
150 +proxyport = 3128
151 +
152 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote
153 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote 1969-12-31 19:00:00.000000000 -0500
154 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/050dnscachenote 2016-05-25 13:14:48.000000000 -0400
155 @@ -0,0 +1,14 @@
156 +# Whether to retrieve the original destination IP in transparent proxy
157 +# setups and check it againt the domain pulled from the HTTP headers.
158 +#
159 +# Be aware that when visiting sites which use a certain type of round-robin
160 +# DNS for load balancing, DG may mark requests as invalid unless DG gets
161 +# exactly the same answers to its DNS requests as clients. The chances of
162 +# this happening can be increased if all clients and servers on the same LAN
163 +# make use of a local, caching DNS server instead of using upstream DNS
164 +# directly.
165 +#
166 +# See http://www.kb.cert.org/vuls/id/435052
167 +# on (default) | off
168 +#!! Not compiled !! originalip = on
169 +
170 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress
171 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress 1969-12-31 19:00:00.000000000 -0500
172 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/055accessdeniedaddress 2016-05-26 03:26:36.775000000 -0400
173 @@ -0,0 +1,24 @@
174 +# accessdeniedaddress is the address of your web server to which the cgi
175 +# dansguardian reporting script was copied. Only used in reporting levels 1 and 2.
176 +#
177 +# This webserver must be either:
178 +# 1. Non-proxied. Either a machine on the local network, or listed as an exception
179 +# in your browser's proxy configuration.
180 +# 2. Added to the exceptionsitelist. Option 1 is preferable; this option is
181 +# only for users using both transparent proxying and a non-local server
182 +# to host this script.
183 +#
184 +# Individual filter groups can override this setting in their own configuration.
185 +#
186 +{
187 + my $deniedurl = db_get_prop(\%dungog, 'dansguardian', "deniedurl") || '';
188 + if ($deniedurl ne '')
189 + {
190 + $OUT = "accessdeniedaddress = 'http://$deniedurl'\n";
191 + }
192 + else
193 + {
194 + my $wsn = db_get_prop(\%dungog, 'dansguardian', "wsn") || ${'DomainName'};
195 + $OUT = "accessdeniedaddress = 'http://$wsn/cgi-bin/dansguardian.pl'\n";
196 + }
197 +}
198 \ No newline at end of file
199 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter
200 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter 1969-12-31 19:00:00.000000000 -0500
201 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/060nonstandarddelimiter 2016-05-25 13:14:48.000000000 -0400
202 @@ -0,0 +1,9 @@
203 +# Non standard delimiter (only used with accessdeniedaddress)
204 +# To help preserve the full banned URL, including parameters, the variables
205 +# passed into the access denied CGI are separated using non-standard
206 +# delimiters. This can be useful to ensure correct operation of the filter
207 +# bypass modes. Parameters are split using "::" in place of "&", and "==" in
208 +# place of "=".
209 +# Default is enabled, but to go back to the standard mode, disable it.
210 +nonstandarddelimiter = on
211 +
212 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace
213 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace 1969-12-31 19:00:00.000000000 -0500
214 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/065bannedimagereplace 2016-05-25 13:14:48.000000000 -0400
215 @@ -0,0 +1,9 @@
216 +# Banned image replacement
217 +# Images that are banned due to domain/url/etc reasons including those
218 +# in the adverts blacklists can be replaced by an image. This will,
219 +# for example, hide images from advert sites and remove broken image
220 +# icons from banned domains.
221 +# on (default) | off
222 +usecustombannedimage = on
223 +custombannedimagefile = '/usr/share/dansguardian/transparent1x1.gif'
224 +
225 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups
226 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups 1969-12-31 19:00:00.000000000 -0500
227 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/070filtergroups 2016-05-26 03:28:57.490000000 -0400
228 @@ -0,0 +1,15 @@
229 +# Filter groups options
230 +# filtergroups sets the number of filter groups. A filter group is a set of content
231 +# filtering options you can apply to a group of users. The value must be 1 or more.
232 +# DansGuardian will automatically look for dansguardianfN.conf where N is the filter
233 +# group. To assign users to groups use the filtergroupslist option. All users default
234 +# to filter group 1. You must have some sort of authentication to be able to map users
235 +# to a group. The more filter groups the more copies of the lists will be in RAM so
236 +# use as few as possible.
237 +{
238 + #from filtergroupslist/30records template
239 + my $fn = db_get_prop(\%dungog, 'dansguardian', "fn") || '1';
240 + $OUT = "filtergroups = $fn\n";
241 +}
242 +filtergroupslist = '/etc/dansguardian/lists/filtergroupslist'
243 +
244 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation
245 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation 1969-12-31 19:00:00.000000000 -0500
246 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/075authfileloation 2016-05-25 13:14:48.000000000 -0400
247 @@ -0,0 +1,4 @@
248 +# Authentication files location
249 +bannediplist = '/etc/dansguardian/lists/bannediplist'
250 +exceptioniplist = '/etc/dansguardian/lists/exceptioniplist'
251 +
252 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase
253 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase 1969-12-31 19:00:00.000000000 -0500
254 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/080showweightphrase 2016-05-25 13:14:48.000000000 -0400
255 @@ -0,0 +1,6 @@
256 +# Show weighted phrases found
257 +# If enabled then the phrases found that made up the total which excedes
258 +# the naughtyness limit will be logged and, if the reporting level is
259 +# high enough, reported. on | off
260 +showweightedfound = on
261 +
262 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode
263 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode 1969-12-31 19:00:00.000000000 -0500
264 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/085weightedphrasemode 2016-05-25 13:14:48.000000000 -0400
265 @@ -0,0 +1,8 @@
266 +# Weighted phrase mode
267 +# There are 3 possible modes of operation:
268 +# 0 = off = do not use the weighted phrase feature.
269 +# 1 = on, normal = normal weighted phrase operation.
270 +# 2 = on, singular = each weighted phrase found only counts once on a page.
271 +#
272 +weightedphrasemode = 2
273 +
274 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage
275 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage 1969-12-31 19:00:00.000000000 -0500
276 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/090urlcacheage 2016-05-25 13:14:48.000000000 -0400
277 @@ -0,0 +1,14 @@
278 +#Positive (clean) result caching for URLs
279 +# Caches good pages so they don't need to be scanned again.
280 +# It also works with AV plugins.
281 +# 0 = off (recommended for ISPs with users with disimilar browsing)
282 +# 1000 = recommended for most users
283 +# 5000 = suggested max upper limit
284 +# If you're using an AV plugin then use at least 5000.
285 +urlcachenumber = 1000
286 +#
287 +# Age before they are stale and should be ignored in seconds
288 +# 0 = never
289 +# 900 = recommended = 15 mins
290 +urlcacheage = 900
291 +
292 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache
293 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache 1969-12-31 19:00:00.000000000 -0500
294 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/095scancleancache 2016-05-25 13:14:48.000000000 -0400
295 @@ -0,0 +1,8 @@
296 +# Clean cache for content (AV) scan results
297 +# By default, to save CPU, files scanned and found to be
298 +# clean are inserted into the clean cache and NOT scanned
299 +# again for a while. If you don't like this then choose
300 +# to disable it.
301 +# (on|off) default = on.
302 +scancleancache = on
303 +
304 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode
305 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode 1969-12-31 19:00:00.000000000 -0500
306 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/100phrasefiltermode 2016-05-25 13:14:48.000000000 -0400
307 @@ -0,0 +1,11 @@
308 +# Smart, Raw and Meta/Title phrase content filtering options
309 +# Smart is where the multiple spaces and HTML are removed before phrase filtering
310 +# Raw is where the raw HTML including meta tags are phrase filtered
311 +# Meta/Title is where only meta and title tags are phrase filtered (v. quick)
312 +# CPU usage can be effectively halved by using setting 0 or 1 compared to 2
313 +# 0 = raw only
314 +# 1 = smart only
315 +# 2 = both of the above (default)
316 +# 3 = meta/title
317 +phrasefiltermode = 2
318 +
319 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing
320 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing 1969-12-31 19:00:00.000000000 -0500
321 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/110lowercasing 2016-05-25 13:14:48.000000000 -0400
322 @@ -0,0 +1,18 @@
323 +# Lower casing options
324 +# When a document is scanned the uppercase letters are converted to lower case
325 +# in order to compare them with the phrases. However this can break Big5 and
326 +# other 16-bit texts. If needed preserve the case. As of version 2.7.0 accented
327 +# characters are supported.
328 +# 0 = force lower case (default)
329 +# 1 = do not change case
330 +# 2 = scan first in lower case, then in original case
331 +preservecase = 0
332 +
333 +# Note:
334 +# If phrasefiltermode and preserve case are both 2, this equates to 4 phrase
335 +# filtering passes. If you have a large enough userbase for this to be a
336 +# worry, and need to filter pages in exotic character encodings, it may be
337 +# better to run two instances on separate servers: one with preservecase 1
338 +# (and possibly forcequicksearch 1) and non ASCII/UTF-8 phrase lists, and one
339 +# with preservecase 0 and ASCII/UTF-8 lists.
340 +
341 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding
342 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding 1969-12-31 19:00:00.000000000 -0500
343 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/115hexdecoding 2016-05-25 13:14:48.000000000 -0400
344 @@ -0,0 +1,8 @@
345 +# Hex decoding options
346 +# When a document is scanned it can optionally convert %XX to chars.
347 +# If you find documents are getting past the phrase filtering due to encoding
348 +# then enable. However this can break Big5 and other 16-bit texts.
349 +# off = disabled (default)
350 +# on = enabled
351 +hexdecodecontent = off
352 +
353 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch
354 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch 1969-12-31 19:00:00.000000000 -0500
355 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/120forcequicksearch 2016-05-25 13:14:48.000000000 -0400
356 @@ -0,0 +1,8 @@
357 +# Force Quick Search rather than DFA search algorithm
358 +# The current DFA implementation is not totally 16-bit character compatible
359 +# but is used by default as it handles large phrase lists much faster.
360 +# If you wish to use a large number of 16-bit character phrases then
361 +# enable this option.
362 +# off (default) | on (Big5 compatible)
363 +forcequicksearch = off
364 +
365 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook
366 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook 1969-12-31 19:00:00.000000000 -0500
367 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/125reverseaddrlook 2016-05-25 13:14:48.000000000 -0400
368 @@ -0,0 +1,9 @@
369 +# Reverse lookups for banned site and URLs.
370 +# If set to on, DansGuardian will look up the forward DNS for an IP URL
371 +# address and search for both in the banned site and URL lists. This would
372 +# prevent a user from simply entering the IP for a banned address.
373 +# It will reduce searching speed somewhat so unless you have a local caching
374 +# DNS server, leave it off and use the Blanket IP Block option in the
375 +# bannedsitelist file instead.
376 +reverseaddresslookups = off
377 +
378 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip
379 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip 1969-12-31 19:00:00.000000000 -0500
380 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/130reverseaddrip 2016-05-25 13:14:48.000000000 -0400
381 @@ -0,0 +1,11 @@
382 +# Reverse lookups for banned and exception IP lists.
383 +# If set to on, DansGuardian will look up the forward DNS for the IP
384 +# of the connecting computer. This means you can put in hostnames in
385 +# the exceptioniplist and bannediplist.
386 +# If a client computer is matched against an IP given in the lists, then the
387 +# IP will be recorded in any log entries; if forward DNS is successful and a
388 +# match occurs against a hostname, the hostname will be logged instead.
389 +# It will reduce searching speed somewhat so unless you have a local DNS server,
390 +# leave it off.
391 +reverseclientiplookups = off
392 +
393 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost
394 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost 1969-12-31 19:00:00.000000000 -0500
395 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/135logclienthost 2016-05-25 13:14:48.000000000 -0400
396 @@ -0,0 +1,8 @@
397 +# Perform reverse lookups on client IPs for successful requests.
398 +# If set to on, DansGuardian will look up the forward DNS for the IP
399 +# of the connecting computer, and log host names (where available) rather than
400 +# IPs against requests.
401 +# This is not dependent on reverseclientiplookups being enabled; however, if it
402 +# is, enabling this option does not incur any additional forward DNS requests.
403 +logclienthostnames = off
404 +
405 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl
406 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl 1969-12-31 19:00:00.000000000 -0500
407 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/140bansiteurl 2016-05-25 13:14:48.000000000 -0400
408 @@ -0,0 +1,8 @@
409 +# Build bannedsitelist and bannedurllist cache files.
410 +# This will compare the date stamp of the list file with the date stamp of
411 +# the cache file and will recreate as needed.
412 +# If a bsl or bul .processed file exists, then that will be used instead.
413 +# It will increase process start speed by 300%. On slow computers this will
414 +# be significant. Fast computers do not need this option. on | off
415 +createlistcachefiles = on
416 +
417 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize
418 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize 1969-12-31 19:00:00.000000000 -0500
419 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/145maxupsize 2016-05-26 03:26:08.080000000 -0400
420 @@ -0,0 +1,14 @@
421 +# POST protection (web upload and forms)
422 +# does not block forms without any file upload, i.e. this is just for
423 +# blocking or limiting uploads
424 +# measured in kibibytes after MIME encoding and header bumph
425 +# use 0 for a complete block
426 +# use higher (e.g. 512 = 512Kbytes) for limiting
427 +# use -1 for no blocking
428 +#maxuploadsize = 512
429 +#maxuploadsize = 0
430 +{
431 + my $maxuploadsize = db_get_prop(\%dungog, 'dansguardian', "maxuploadsize") || '-1';
432 + if ($maxuploadsize eq 'block') {$maxuploadsize = '0';}
433 + $OUT = "maxuploadsize = $maxuploadsize\n";
434 +}
435 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize
436 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize 1969-12-31 19:00:00.000000000 -0500
437 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/150maxcontentfilesize 2016-05-25 13:14:48.000000000 -0400
438 @@ -0,0 +1,11 @@
439 +# Max content filter size
440 +# Sometimes web servers label binary files as text which can be very
441 +# large which causes a huge drain on memory and cpu resources.
442 +# To counter this, you can limit the size of the document to be
443 +# filtered and get it to just pass it straight through.
444 +# This setting also applies to content regular expression modification.
445 +# The value must not be higher than maxcontentramcachescansize
446 +# The size is in Kibibytes - eg 2048 = 2Mb
447 +# use 0 to set it to maxcontentramcachescansize
448 +maxcontentfiltersize = 256
449 +
450 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize
451 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize 1969-12-31 19:00:00.000000000 -0500
452 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/155maxcontentramcachesize 2016-05-25 13:14:48.000000000 -0400
453 @@ -0,0 +1,10 @@
454 +# Max content ram cache scan size
455 +# This is only used if you use a content scanner plugin such as AV
456 +# This is the max size of file that DG will download and cache
457 +# in RAM. After this limit is reached it will cache to disk
458 +# This value must be less than or equal to maxcontentfilecachescansize.
459 +# The size is in Kibibytes - eg 10240 = 10Mb
460 +# use 0 to set it to maxcontentfilecachescansize
461 +# This option may be ignored by the configured download manager.
462 +maxcontentramcachescansize = 2000
463 +
464 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize
465 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize 1969-12-31 19:00:00.000000000 -0500
466 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/160maxcontentfilecachescansize 2016-05-25 13:14:48.000000000 -0400
467 @@ -0,0 +1,8 @@
468 +# Max content file cache scan size
469 +# This is only used if you use a content scanner plugin such as AV
470 +# This is the max size file that DG will download
471 +# so that it can be scanned or virus checked.
472 +# This value must be greater or equal to maxcontentramcachescansize.
473 +# The size is in Kibibytes - eg 10240 = 10Mb
474 +maxcontentfilecachescansize = 20000
475 +
476 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir
477 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir 1969-12-31 19:00:00.000000000 -0500
478 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/165filebigcachedir 2016-05-25 13:14:48.000000000 -0400
479 @@ -0,0 +1,5 @@
480 +# File cache dir
481 +# Where DG will download files to be scanned if too large for the
482 +# RAM cache.
483 +filecachedir = '/tmp'
484 +
485 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl
486 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl 1969-12-31 19:00:00.000000000 -0500
487 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/170deldowntempl 2016-05-25 13:14:48.000000000 -0400
488 @@ -0,0 +1,9 @@
489 +# Delete file cache after user completes download
490 +# When a file gets save to temp it stays there until it is deleted.
491 +# You can choose to have the file deleted when the user makes a sucessful
492 +# download. This will mean if they click on the link to download from
493 +# the temp store a second time it will give a 404 error.
494 +# You should configure something to delete old files in temp to stop it filling up.
495 +# on|off (defaults to on)
496 +deletedownloadedtempfiles = on
497 +
498 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay
499 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay 1969-12-31 19:00:00.000000000 -0500
500 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/175initialtrickdelay 2016-05-25 13:14:48.000000000 -0400
501 @@ -0,0 +1,9 @@
502 +# Initial Trickle delay
503 +# This is the number of seconds a browser connection is left waiting
504 +# before first being sent *something* to keep it alive. The
505 +# *something* depends on the download manager chosen.
506 +# Do not choose a value too low or normal web pages will be affected.
507 +# A value between 20 and 110 would be sensible
508 +# This may be ignored by the configured download manager.
509 +initialtrickledelay = 20
510 +
511 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay
512 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay 1969-12-31 19:00:00.000000000 -0500
513 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/180trickdelay 2016-05-25 13:14:48.000000000 -0400
514 @@ -0,0 +1,7 @@
515 +# Trickle delay
516 +# This is the number of seconds a browser connection is left waiting
517 +# before being sent more *something* to keep it alive. The
518 +# *something* depends on the download manager chosen.
519 +# This may be ignored by the configured download manager.
520 +trickledelay = 10
521 +
522 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang
523 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang 1969-12-31 19:00:00.000000000 -0500
524 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/185downloadmang 2016-05-25 13:14:48.000000000 -0400
525 @@ -0,0 +1,31 @@
526 +# Download Managers
527 +# These handle downloads of files to be filtered and scanned.
528 +# They differ in the method they deal with large downloads.
529 +# Files usually need to be downloaded 100% before they can be
530 +# filtered and scanned before being sent on to the browser.
531 +# Normally the browser can just wait, but with content scanning,
532 +# for example to AV, the browser may timeout or the user may get
533 +# confused so the download manager has to do some sort of
534 +# 'keep alive'.
535 +#
536 +# There are various methods possible but not all are included.
537 +# The author does not have the time to write them all so I have
538 +# included a plugin systam. Also, not all methods work with all
539 +# browsers and clients. Specifically some fancy methods don't
540 +# work with software that downloads updates. To solve this,
541 +# each plugin can support a regular expression for matching
542 +# the client's user-agent string, and lists of the mime types
543 +# and extensions it should manage.
544 +#
545 +# Note that these are the matching methods provided by the base plugin
546 +# code, and individual plugins may override or add to them.
547 +# See the individual plugin conf files for supported options.
548 +#
549 +# The plugins are matched in the order you specify and the last
550 +# one is forced to match as the default, regardless of user agent
551 +# and other matching mechanisms.
552 +#
553 +downloadmanager = '/etc/dansguardian/downloadmanagers/fancy.conf'
554 +#downloadmanager = '/etc/dansguardian/downloadmanagers/trickle.conf'
555 +downloadmanager = '/etc/dansguardian/downloadmanagers/default.conf'
556 +
557 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners
558 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners 1969-12-31 19:00:00.000000000 -0500
559 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/190contentscanners 2016-05-26 03:59:22.616000000 -0400
560 @@ -0,0 +1,29 @@
561 +# Content Scanners (Also known as AV scanners)
562 +# These are plugins that scan the content of all files your browser fetches
563 +# for example to AV scan. The options are limitless. Eventually all of
564 +# DansGuardian will be plugin based. You can have more than one content
565 +# scanner. The plugins are run in the order you specify.
566 +# This is one of the few places you can have multiple options of the same name.
567 +#
568 +# Some of the scanner(s) require 3rd party software and libraries eg clamav.
569 +# See the individual plugin conf file for more options (if any).
570 +#
571 +#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/clamav.conf'
572 +#contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf'
573 +#!! Unimplemented !! contentscanner = '/etc/dansguardian/contentscanners/kavav.conf'
574 +#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/kavdscan.conf'
575 +#contentscanner = '/etc/dansguardian/contentscanners/icapscan.conf'
576 +#contentscanner = '/etc/dansguardian/contentscanners/commandlinescan.conf'
577 +
578 +{
579 + my $contentscanner = db_get_prop(\%dungog, 'dansguardian', "contentscanner") || '';
580 + if ($contentscanner eq 'clamscan')
581 + {
582 + $OUT = "contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf'\n";
583 + }
584 + else
585 + {
586 + $OUT= "# clamscan disabled "
587 + }
588 +
589 +}
590 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout
591 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout 1969-12-31 19:00:00.000000000 -0500
592 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/195contentscantimout 2016-05-25 13:14:48.000000000 -0400
593 @@ -0,0 +1,7 @@
594 +# Content scanner timeout
595 +# Some of the content scanners support using a timeout value to stop
596 +# processing (eg AV scanning) the file if it takes too long.
597 +# If supported this will be used.
598 +# The default of 60 seconds is probably reasonable.
599 +contentscannertimeout = 60
600 +
601 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions
602 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions 1969-12-31 19:00:00.000000000 -0500
603 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/200contentscanexceptions 2016-05-25 13:14:48.000000000 -0400
604 @@ -0,0 +1,8 @@
605 +# Content scan exceptions
606 +# If 'on' exception sites, urls, users etc will be scanned
607 +# This is probably not desirable behavour as exceptions are
608 +# supposed to be trusted and will increase load.
609 +# Correct use of grey lists are a better idea.
610 +# (on|off) default = off
611 +contentscanexceptions = off
612 +
613 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins
614 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins 1969-12-31 19:00:00.000000000 -0500
615 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/205authplugins 2016-05-26 03:38:41.514000000 -0400
616 @@ -0,0 +1,29 @@
617 +# Auth plugins
618 +# These replace the usernameidmethod* options in previous versions. They
619 +# handle the extraction of client usernames from various sources, such as
620 +# Proxy-Authorisation headers and ident servers, enabling requests to be
621 +# handled according to the settings of the user's filter group.
622 +# Multiple plugins can be specified, and will be queried in order until one
623 +# of them either finds a username or throws an error. For example, if Squid
624 +# is configured with both NTLM and Basic auth enabled, and both the 'proxy-basic'
625 +# and 'proxy-ntlm' auth plugins are enabled here, then clients which do not support
626 +# NTLM can fall back to Basic without sacrificing access rights.
627 +#
628 +# If you do not use multiple filter groups, you need not specify this option.
629 +#
630 +#authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'
631 +#authplugin = '/etc/dansguardian/authplugins/proxy-digest.conf'
632 +#authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf'
633 +#authplugin = '/etc/dansguardian/authplugins/ident.conf'
634 +#authplugin = '/etc/dansguardian/authplugins/ip.conf'
635 +{
636 + my $proxyaccess = db_get_prop(\%conf, 'squid', "RequireAuth") || '';
637 + if ($proxyaccess eq 'ident')
638 + {
639 + $OUT = "authplugin = '/etc/dansguardian/authplugins/ident.conf'\n";
640 + }
641 + elsif ($proxyaccess =~ /(ncsa|pam|ldap)/)
642 + {
643 + $OUT = "authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'\n";
644 + }
645 +}
646 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local
647 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local 2008-10-20 11:44:27.000000000 -0400
648 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/20local 1969-12-31 19:00:00.000000000 -0500
649 @@ -1,66 +0,0 @@
650 -###---------- LOCAL DansGuardian's settings ----------###
651 -
652 -{
653 - use esmith::config;
654 - use esmith::db;
655 -
656 - my %conf;
657 - tie %conf, 'esmith::config';
658 -
659 - my %dungog;
660 - tie %dungog, 'esmith::config', '/home/e-smith/db/dungog';
661 -
662 - $OUT = '';
663 -
664 - my $port = db_get_prop(\%dungog, 'dansguardian', 'port') || '8080';
665 - $OUT .= "filterport = $port\n";
666 -
667 - #Individual filter groups can override this setting in their own configuration.
668 - my $deniedurl = db_get_prop(\%dungog, 'dansguardian', "deniedurl") || '';
669 - if ($deniedurl ne '')
670 - {
671 - $OUT .= "accessdeniedaddress = 'http://$deniedurl'\n";
672 - }
673 - else
674 - {
675 - my $wsn = db_get_prop(\%dungog, 'dansguardian', "wsn") || ${'DomainName'};
676 - $OUT .= "accessdeniedaddress = 'http://$wsn/cgi-bin/dansguardian.pl'\n";
677 - }
678 -
679 - my $maxuploadsize = db_get_prop(\%dungog, 'dansguardian', "maxuploadsize") || '-1';
680 - if ($maxuploadsize eq 'block') {$maxuploadsize = '0';}
681 - $OUT .= "maxuploadsize = $maxuploadsize\n";
682 -
683 - #from filtergroupslist/30records template
684 - my $fn = db_get_prop(\%dungog, 'dansguardian', "fn") || '1';
685 - $OUT .= "filtergroups = $fn\n";
686 -
687 - my $loglevel = db_get_prop(\%dungog, 'dansguardian', "loglevel") || '0';
688 - $OUT .= "loglevel = $loglevel\n";
689 -
690 - my $logfileformat = db_get_prop(\%dungog, 'dansguardian', "logfileformat") || '1';
691 - $OUT .= "logfileformat = $logfileformat\n";
692 -
693 - my $language = db_get_prop(\%dungog, 'dansguardian', "language") || 'ukenglish';
694 - $OUT .= "language = $language\n";
695 -
696 - if (-e "/etc/dansguardian/languages/$language/templatef0.html")
697 - {
698 - $OUT .= "htmltemplate = templatef0.html\n";
699 - }
700 -
701 - my $proxyaccess = db_get_prop(\%conf, 'squid', "RequireAuth") || '';
702 - if ($proxyaccess eq 'ident')
703 - {
704 - $OUT .= "authplugin = '/etc/dansguardian/authplugins/ident.conf'\n";
705 - }
706 - elsif ($proxyaccess =~ /(ncsa|pam|ldap)/)
707 - {
708 - $OUT .= "authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'\n";
709 - }
710 -}
711 -reportinglevel = 1
712 -maxlogitemlength = 300
713 -contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf'
714 -
715 -###---------- Default DansGuardian's settings ----------###
716 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls
717 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls 1969-12-31 19:00:00.000000000 -0500
718 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/210recheckreplacedurls 2016-05-25 13:14:48.000000000 -0400
719 @@ -0,0 +1,11 @@
720 +# Re-check replaced URLs
721 +# As a matter of course, URLs undergo regular expression search/replace (urlregexplist)
722 +# *after* checking the exception site/URL/regexpURL lists, but *before* checking against
723 +# the banned site/URL lists, allowing certain requests that would be matched against the
724 +# latter in their original state to effectively be converted into grey requests.
725 +# With this option enabled, the exception site/URL/regexpURL lists are also re-checked
726 +# after replacement, making it possible for URL replacement to trigger exceptions based
727 +# on them.
728 +# Defaults to off.
729 +recheckreplacedurls = off
730 +
731 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc
732 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc 1969-12-31 19:00:00.000000000 -0500
733 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/215forwardmisc 2016-05-25 13:14:48.000000000 -0400
734 @@ -0,0 +1,7 @@
735 +# Misc settings
736 +
737 +# if on it adds an X-Forwarded-For: <clientip> to the HTTP request
738 +# header. This may help solve some problem sites that need to know the
739 +# source ip. on | off
740 +forwardedfor = off
741 +
742 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc
743 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc 1969-12-31 19:00:00.000000000 -0500
744 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/220xforwardmisc 2016-05-25 13:14:48.000000000 -0400
745 @@ -0,0 +1,5 @@
746 +# if on it uses the X-Forwarded-For: <clientip> to determine the client
747 +# IP. This is for when you have squid between the clients and DansGuardian.
748 +# Warning - headers are easily spoofed. on | off
749 +usexforwardedfor = off
750 +
751 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc
752 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc 1969-12-31 19:00:00.000000000 -0500
753 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/225logconnectionmisc 2016-05-25 13:14:48.000000000 -0400
754 @@ -0,0 +1,5 @@
755 +# if on it logs some debug info regarding fork()ing and accept()ing which
756 +# can usually be ignored. These are logged by syslog. It is safe to leave
757 +# it on or off
758 +logconnectionhandlingerrors = on
759 +
760 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle
761 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle 1969-12-31 19:00:00.000000000 -0500
762 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/230logchildprocesshandle 2016-05-25 13:14:48.000000000 -0400
763 @@ -0,0 +1,8 @@
764 +# Fork pool options
765 +
766 +# If on, this causes DG to write to the log file whenever child processes are
767 +# created or destroyed (other than by crashes). This information can help in
768 +# understanding and tuning the following parameters, but is not generally
769 +# useful in production.
770 +logchildprocesshandling = off
771 +
772 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild
773 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild 1969-12-31 19:00:00.000000000 -0500
774 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/235maxchild 2016-05-25 13:14:48.000000000 -0400
775 @@ -0,0 +1,5 @@
776 +# sets the maximum number of processes to spawn to handle the incoming
777 +# connections. Max value usually 250 depending on OS.
778 +# On large sites you might want to try 180.
779 +maxchildren = 120
780 +
781 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild
782 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild 1969-12-31 19:00:00.000000000 -0500
783 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/240minchild 2016-05-25 13:14:48.000000000 -0400
784 @@ -0,0 +1,4 @@
785 +# sets the minimum number of processes to spawn to handle the incoming connections.
786 +# On large sites you might want to try 32.
787 +minchildren = 8
788 +
789 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild
790 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild 1969-12-31 19:00:00.000000000 -0500
791 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/245minsparechild 2016-05-25 13:14:48.000000000 -0400
792 @@ -0,0 +1,4 @@
793 +# sets the minimum number of processes to be kept ready to handle connections.
794 +# On large sites you might want to try 8.
795 +minsparechildren = 4
796 +
797 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild
798 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild 1969-12-31 19:00:00.000000000 -0500
799 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/250preforkchild 2016-05-25 13:14:48.000000000 -0400
800 @@ -0,0 +1,4 @@
801 +# sets the minimum number of processes to spawn when it runs out
802 +# On large sites you might want to try 10.
803 +preforkchildren = 6
804 +
805 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild
806 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild 1969-12-31 19:00:00.000000000 -0500
807 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/255maxsparechild 2016-05-25 13:14:48.000000000 -0400
808 @@ -0,0 +1,5 @@
809 +# sets the maximum number of processes to have doing nothing.
810 +# When this many are spare it will cull some of them.
811 +# On large sites you might want to try 64.
812 +maxsparechildren = 32
813 +
814 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild
815 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild 1969-12-31 19:00:00.000000000 -0500
816 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/260maxagechild 2016-05-25 13:14:48.000000000 -0400
817 @@ -0,0 +1,5 @@
818 +# sets the maximum age of a child process before it croaks it.
819 +# This is the number of connections they handle before exiting.
820 +# On large sites you might want to try 10000.
821 +maxagechildren = 500
822 +
823 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips
824 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips 1969-12-31 19:00:00.000000000 -0500
825 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/265maxips 2016-05-25 13:14:48.000000000 -0400
826 @@ -0,0 +1,5 @@
827 +# Sets the maximum number client IP addresses allowed to connect at once.
828 +# Use this to set a hard limit on the number of users allowed to concurrently
829 +# browse the web. Set to 0 for no limit, and to disable the IP cache process.
830 +maxips = 0
831 +
832 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions
833 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions 1969-12-31 19:00:00.000000000 -0500
834 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/270processoptions 2016-05-25 13:14:48.000000000 -0400
835 @@ -0,0 +1,22 @@
836 +# Process options
837 +# (Change these only if you really know what you are doing).
838 +# These options allow you to run multiple instances of DansGuardian on a single machine.
839 +# Remember to edit the log file path above also if that is your intention.
840 +
841 +# IPC filename
842 +#
843 +# Defines IPC server directory and filename used to communicate with the log process.
844 +ipcfilename = '/tmp/.dguardianipc'
845 +
846 +# URL list IPC filename
847 +#
848 +# Defines URL list IPC server directory and filename used to communicate with the URL
849 +# cache process.
850 +urlipcfilename = '/tmp/.dguardianurlipc'
851 +
852 +# IP list IPC filename
853 +#
854 +# Defines IP list IPC server directory and filename, for communicating with the client
855 +# IP cache process.
856 +ipipcfilename = '/tmp/.dguardianipipc'
857 +
858 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename
859 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename 1969-12-31 19:00:00.000000000 -0500
860 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/275pidfilename 2016-05-25 13:14:48.000000000 -0400
861 @@ -0,0 +1,5 @@
862 +# PID filename
863 +#
864 +# Defines process id directory and filename.
865 +#pidfilename = '/var/run/dansguardian.pid'
866 +
867 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon
868 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon 1969-12-31 19:00:00.000000000 -0500
869 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/280disabledaemon 2016-05-25 13:14:48.000000000 -0400
870 @@ -0,0 +1,6 @@
871 +# Disable daemoning
872 +# If enabled the process will not fork into the background.
873 +# It is not usually advantageous to do this.
874 +# on|off (defaults to off)
875 +nodaemon = off
876 +
877 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog
878 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog 1969-12-31 19:00:00.000000000 -0500
879 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/285disablelog 2016-05-25 13:14:48.000000000 -0400
880 @@ -0,0 +1,4 @@
881 +# Disable logging process
882 +# on|off (defaults to off)
883 +nologger = off
884 +
885 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks
886 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks 1969-12-31 19:00:00.000000000 -0500
887 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/290logadblocks 2016-05-25 13:14:48.000000000 -0400
888 @@ -0,0 +1,4 @@
889 +# Enable logging of "ADs" category blocks
890 +# on|off (defaults to off)
891 +logadblocks = off
892 +
893 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent
894 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent 1969-12-31 19:00:00.000000000 -0500
895 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/295loguseragent 2016-05-25 13:14:48.000000000 -0400
896 @@ -0,0 +1,5 @@
897 +# Enable logging of client User-Agent
898 +# Some browsers will cause a *lot* of extra information on each line!
899 +# on|off (defaults to off)
900 +loguseragent = off
901 +
902 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup
903 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup 1969-12-31 19:00:00.000000000 -0500
904 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/300daemonrunasusergroup 2016-05-25 13:14:48.000000000 -0400
905 @@ -0,0 +1,9 @@
906 +# Daemon runas user and group
907 +# This is the user that DansGuardian runs as. Normally the user/group nobody.
908 +# Uncomment to use. Defaults to the user set at compile time.
909 +# Temp files created during virus scanning are given owner and group read
910 +# permissions; to use content scanners based on external processes, such as
911 +# clamdscan, the two processes must run with either the same group or user ID.
912 +#daemonuser = 'dansguardian'
913 +#daemongroup = 'dansguardian'
914 +
915 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart
916 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart 1969-12-31 19:00:00.000000000 -0500
917 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/305softrestart 2016-05-25 13:14:48.000000000 -0400
918 @@ -0,0 +1,6 @@
919 +# Soft restart
920 +# When on this disables the forced killing off all processes in the process group.
921 +# This is not to be confused with the -g run time option - they are not related.
922 +# on|off (defaults to off)
923 +softrestart = off
924 +
925 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer
926 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer 1969-12-31 19:00:00.000000000 -0500
927 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/310mailer 2016-05-25 13:14:48.000000000 -0400
928 @@ -0,0 +1,5 @@
929 +# Mail program
930 +# Path (sendmail-compatible) email program, with options.
931 +# Not used if usesmtp is disabled (filtergroup specific).
932 +mailer = '/usr/sbin/sendmail -t'
933 +
934 diff -Nur smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro
935 --- smeserver-dansguardian-panel-2.11-old/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro 2007-10-29 10:14:12.000000000 -0400
936 +++ smeserver-dansguardian-panel-2.11/root/etc/e-smith/templates/etc/dansguardian/dansguardian.conf/40distro 1969-12-31 19:00:00.000000000 -0500
937 @@ -1,609 +0,0 @@
938 -# DansGuardian config file for version 2.9.9.1,
939 -
940 -# **NOTE** as of version 2.7.5 most of the list files are now in dansguardianf1.conf
941 -
942 -
943 -# Web Access Denied Reporting (does not affect logging)
944 -#
945 -# -1 = log, but do not block - Stealth mode
946 -# 0 = just say 'Access Denied'
947 -# 1 = report why but not what denied phrase
948 -# 2 = report fully
949 -# 3 = use HTML template file (accessdeniedaddress ignored) - recommended
950 -#
951 -reportinglevel = 3
952 -
953 -# Language dir where languages are stored for internationalisation.
954 -# The HTML template within this dir is only used when reportinglevel
955 -# is set to 3. When used, DansGuardian will display the HTML file instead of
956 -# using the perl cgi script. This option is faster, cleaner
957 -# and easier to customise the access denied page.
958 -# The language file is used no matter what setting however.
959 -#
960 -languagedir = '/etc/dansguardian/languages'
961 -
962 -# language to use from languagedir.
963 -language = 'ukenglish'
964 -
965 -# Logging Settings
966 -#
967 -# 0 = none 1 = just denied 2 = all text based 3 = all requests
968 -loglevel = 2
969 -
970 -# Log Exception Hits
971 -# Log if an exception (user, ip, URL, phrase) is matched and so
972 -# the page gets let through. Can be useful for diagnosing
973 -# why a site gets through the filter.
974 -# 0 = never log exceptions
975 -# 1 = log exceptions, but do not explicitly mark them as such
976 -# 2 = always log & mark exceptions (default)
977 -logexceptionhits = 2
978 -
979 -# Log File Format
980 -# 1 = DansGuardian format (space delimited)
981 -# 2 = CSV-style format
982 -# 3 = Squid Log File Format
983 -# 4 = Tab delimited
984 -logfileformat = 1
985 -
986 -# truncate large items in log lines
987 -#maxlogitemlength = 400
988 -
989 -# anonymize logs (blank out usernames & IPs)
990 -#anonymizelogs = on
991 -
992 -
993 -# Syslog logging
994 -#
995 -# Use syslog for access logging instead of logging to the file
996 -# at the defined or built-in "loglocation"
997 -#syslog = on
998 -
999 -# Log file location
1000 -#
1001 -# Defines the log directory and filename.
1002 -#loglocation = '/var/log/dansguardian/access.log'
1003 -
1004 -
1005 -# Statistics log file location
1006 -#
1007 -# Defines the stat file directory and filename.
1008 -# Only used in conjunction with maxips > 0
1009 -# Once every 3 minutes, the current number of IPs in the cache, and the most
1010 -# that have been in the cache since the daemon was started, are written to this
1011 -# file. IPs persist in the cache for 7 days.
1012 -#statlocation = '/var/log/dansguardian/stats'
1013 -
1014 -
1015 -# Network Settings
1016 -#
1017 -# the IP that DansGuardian listens on. If left blank DansGuardian will
1018 -# listen on all IPs. That would include all NICs, loopback, modem, etc.
1019 -# Normally you would have your firewall protecting this, but if you want
1020 -# you can limit it to a certain IP. To bind to multiple interfaces,
1021 -# specify each IP on an individual filterip line.
1022 -filterip =
1023 -
1024 -# the port that DansGuardian listens to.
1025 -filterport = 8080
1026 -
1027 -# the ip of the proxy (default is the loopback - i.e. this server)
1028 -proxyip = 127.0.0.1
1029 -
1030 -# the port DansGuardian connects to proxy on
1031 -proxyport = 3128
1032 -
1033 -# accessdeniedaddress is the address of your web server to which the cgi
1034 -# dansguardian reporting script was copied. Only used in reporting levels 1 and 2.
1035 -#
1036 -# This webserver must be either:
1037 -# 1. Non-proxied. Either a machine on the local network, or listed as an exception
1038 -# in your browser's proxy configuration.
1039 -# 2. Added to the exceptionsitelist. Option 1 is preferable; this option is
1040 -# only for users using both transparent proxying and a non-local server
1041 -# to host this script.
1042 -#
1043 -# Individual filter groups can override this setting in their own configuration.
1044 -#
1045 -accessdeniedaddress = 'http://YOURSERVER.YOURDOMAIN/cgi-bin/dansguardian.pl'
1046 -
1047 -# Non standard delimiter (only used with accessdeniedaddress)
1048 -# To help preserve the full banned URL, including parameters, the variables
1049 -# passed into the access denied CGI are separated using non-standard
1050 -# delimiters. This can be useful to ensure correct operation of the filter
1051 -# bypass modes. Parameters are split using "::" in place of "&", and "==" in
1052 -# place of "=".
1053 -# Default is enabled, but to go back to the standard mode, disable it.
1054 -nonstandarddelimiter = on
1055 -
1056 -
1057 -
1058 -# Banned image replacement
1059 -# Images that are banned due to domain/url/etc reasons including those
1060 -# in the adverts blacklists can be replaced by an image. This will,
1061 -# for example, hide images from advert sites and remove broken image
1062 -# icons from banned domains.
1063 -# on (default) | off
1064 -usecustombannedimage = on
1065 -custombannedimagefile = '/etc/dansguardian/transparent1x1.gif'
1066 -
1067 -
1068 -
1069 -# Filter groups options
1070 -# filtergroups sets the number of filter groups. A filter group is a set of content
1071 -# filtering options you can apply to a group of users. The value must be 1 or more.
1072 -# DansGuardian will automatically look for dansguardianfN.conf where N is the filter
1073 -# group. To assign users to groups use the filtergroupslist option. All users default
1074 -# to filter group 1. You must have some sort of authentication to be able to map users
1075 -# to a group. The more filter groups the more copies of the lists will be in RAM so
1076 -# use as few as possible.
1077 -filtergroups = 1
1078 -filtergroupslist = '/etc/dansguardian/lists/filtergroupslist'
1079 -
1080 -
1081 -
1082 -# Authentication files location
1083 -bannediplist = '/etc/dansguardian/lists/bannediplist'
1084 -exceptioniplist = '/etc/dansguardian/lists/exceptioniplist'
1085 -
1086 -
1087 -
1088 -# Show weighted phrases found
1089 -# If enabled then the phrases found that made up the total which excedes
1090 -# the naughtyness limit will be logged and, if the reporting level is
1091 -# high enough, reported. on | off
1092 -showweightedfound = on
1093 -
1094 -# Weighted phrase mode
1095 -# There are 3 possible modes of operation:
1096 -# 0 = off = do not use the weighted phrase feature.
1097 -# 1 = on, normal = normal weighted phrase operation.
1098 -# 2 = on, singular = each weighted phrase found only counts once on a page.
1099 -#
1100 -weightedphrasemode = 2
1101 -
1102 -
1103 -
1104 -# Positive (clean) result caching for URLs
1105 -# Caches good pages so they don't need to be scanned again.
1106 -# It also works with AV plugins.
1107 -# 0 = off (recommended for ISPs with users with disimilar browsing)
1108 -# 1000 = recommended for most users
1109 -# 5000 = suggested max upper limit
1110 -# If you're using an AV plugin then use at least 5000.
1111 -urlcachenumber = 1000
1112 -#
1113 -# Age before they are stale and should be ignored in seconds
1114 -# 0 = never
1115 -# 900 = recommended = 15 mins
1116 -urlcacheage = 900
1117 -
1118 -
1119 -
1120 -# Clean cache for content (AV) scan results
1121 -# By default, to save CPU, files scanned and found to be
1122 -# clean are inserted into the clean cache and NOT scanned
1123 -# again for a while. If you don't like this then choose
1124 -# to disable it.
1125 -# (on|off) default = on.
1126 -scancleancache = on
1127 -
1128 -
1129 -
1130 -# Smart, Raw and Meta/Title phrase content filtering options
1131 -# Smart is where the multiple spaces and HTML are removed before phrase filtering
1132 -# Raw is where the raw HTML including meta tags are phrase filtered
1133 -# Meta/Title is where only meta and title tags are phrase filtered (v. quick)
1134 -# CPU usage can be effectively halved by using setting 0 or 1 compared to 2
1135 -# 0 = raw only
1136 -# 1 = smart only
1137 -# 2 = both of the above (default)
1138 -# 3 = meta/title
1139 -phrasefiltermode = 2
1140 -
1141 -# Lower casing options
1142 -# When a document is scanned the uppercase letters are converted to lower case
1143 -# in order to compare them with the phrases. However this can break Big5 and
1144 -# other 16-bit texts. If needed preserve the case. As of version 2.7.0 accented
1145 -# characters are supported.
1146 -# 0 = force lower case (default)
1147 -# 1 = do not change case
1148 -# 2 = scan first in lower case, then in original case
1149 -preservecase = 0
1150 -
1151 -# Note:
1152 -# If phrasefiltermode and preserve case are both 2, this equates to 4 phrase
1153 -# filtering passes. If you have a large enough userbase for this to be a
1154 -# worry, and need to filter pages in exotic character encodings, it may be
1155 -# better to run two instances on separate servers: one with preservecase 1
1156 -# (and possibly forcequicksearch 1) and non ASCII/UTF-8 phrase lists, and one
1157 -# with preservecase 0 and ASCII/UTF-8 lists.
1158 -
1159 -
1160 -
1161 -# Hex decoding options
1162 -# When a document is scanned it can optionally convert %XX to chars.
1163 -# If you find documents are getting past the phrase filtering due to encoding
1164 -# then enable. However this can break Big5 and other 16-bit texts.
1165 -# off = disabled (default)
1166 -# on = enabled
1167 -hexdecodecontent = off
1168 -
1169 -
1170 -
1171 -# Force Quick Search rather than DFA search algorithm
1172 -# The current DFA implementation is not totally 16-bit character compatible
1173 -# but is used by default as it handles large phrase lists much faster.
1174 -# If you wish to use a large number of 16-bit character phrases then
1175 -# enable this option.
1176 -# off (default) | on (Big5 compatible)
1177 -forcequicksearch = off
1178 -
1179 -
1180 -
1181 -# Reverse lookups for banned site and URLs.
1182 -# If set to on, DansGuardian will look up the forward DNS for an IP URL
1183 -# address and search for both in the banned site and URL lists. This would
1184 -# prevent a user from simply entering the IP for a banned address.
1185 -# It will reduce searching speed somewhat so unless you have a local caching
1186 -# DNS server, leave it off and use the Blanket IP Block option in the
1187 -# bannedsitelist file instead.
1188 -reverseaddresslookups = off
1189 -
1190 -
1191 -
1192 -# Reverse lookups for banned and exception IP lists.
1193 -# If set to on, DansGuardian will look up the forward DNS for the IP
1194 -# of the connecting computer. This means you can put in hostnames in
1195 -# the exceptioniplist and bannediplist.
1196 -# If a client computer is matched against an IP given in the lists, then the
1197 -# IP will be recorded in any log entries; if forward DNS is successful and a
1198 -# match occurs against a hostname, the hostname will be logged instead.
1199 -# It will reduce searching speed somewhat so unless you have a local DNS server,
1200 -# leave it off.
1201 -reverseclientiplookups = off
1202 -
1203 -
1204 -# Perform reverse lookups on client IPs for successful requests.
1205 -# If set to on, DansGuardian will look up the forward DNS for the IP
1206 -# of the connecting computer, and log host names (where available) rather than
1207 -# IPs against requests.
1208 -# This is not dependent on reverseclientiplookups being enabled; however, if it
1209 -# is, enabling this option does not incur any additional forward DNS requests.
1210 -logclienthostnames = off
1211 -
1212 -
1213 -# Build bannedsitelist and bannedurllist cache files.
1214 -# This will compare the date stamp of the list file with the date stamp of
1215 -# the cache file and will recreate as needed.
1216 -# If a bsl or bul .processed file exists, then that will be used instead.
1217 -# It will increase process start speed by 300%. On slow computers this will
1218 -# be significant. Fast computers do not need this option. on | off
1219 -createlistcachefiles = on
1220 -
1221 -
1222 -
1223 -# POST protection (web upload and forms)
1224 -# does not block forms without any file upload, i.e. this is just for
1225 -# blocking or limiting uploads
1226 -# measured in kibibytes after MIME encoding and header bumph
1227 -# use 0 for a complete block
1228 -# use higher (e.g. 512 = 512Kbytes) for limiting
1229 -# use -1 for no blocking
1230 -#maxuploadsize = 512
1231 -#maxuploadsize = 0
1232 -maxuploadsize = -1
1233 -
1234 -
1235 -
1236 -# Max content filter size
1237 -# Sometimes web servers label binary files as text which can be very
1238 -# large which causes a huge drain on memory and cpu resources.
1239 -# To counter this, you can limit the size of the document to be
1240 -# filtered and get it to just pass it straight through.
1241 -# This setting also applies to content regular expression modification.
1242 -# The value must not be higher than maxcontentramcachescansize
1243 -# The size is in Kibibytes - eg 2048 = 2Mb
1244 -# use 0 to set it to maxcontentramcachescansize
1245 -maxcontentfiltersize = 256
1246 -
1247 -
1248 -
1249 -# Max content ram cache scan size
1250 -# This is only used if you use a content scanner plugin such as AV
1251 -# This is the max size of file that DG will download and cache
1252 -# in RAM. After this limit is reached it will cache to disk
1253 -# This value must be less than or equal to maxcontentfilecachescansize.
1254 -# The size is in Kibibytes - eg 10240 = 10Mb
1255 -# use 0 to set it to maxcontentfilecachescansize
1256 -# This option may be ignored by the configured download manager.
1257 -maxcontentramcachescansize = 2000
1258 -
1259 -
1260 -
1261 -# Max content file cache scan size
1262 -# This is only used if you use a content scanner plugin such as AV
1263 -# This is the max size file that DG will download
1264 -# so that it can be scanned or virus checked.
1265 -# This value must be greater or equal to maxcontentramcachescansize.
1266 -# The size is in Kibibytes - eg 10240 = 10Mb
1267 -maxcontentfilecachescansize = 20000
1268 -
1269 -
1270 -
1271 -# File cache dir
1272 -# Where DG will download files to be scanned if too large for the
1273 -# RAM cache.
1274 -filecachedir = '/tmp'
1275 -
1276 -
1277 -
1278 -# Delete file cache after user completes download
1279 -# When a file gets save to temp it stays there until it is deleted.
1280 -# You can choose to have the file deleted when the user makes a sucessful
1281 -# download. This will mean if they click on the link to download from
1282 -# the temp store a second time it will give a 404 error.
1283 -# You should configure something to delete old files in temp to stop it filling up.
1284 -# on|off (defaults to on)
1285 -deletedownloadedtempfiles = on
1286 -
1287 -
1288 -
1289 -# Initial Trickle delay
1290 -# This is the number of seconds a browser connection is left waiting
1291 -# before first being sent *something* to keep it alive. The
1292 -# *something* depends on the download manager chosen.
1293 -# Do not choose a value too low or normal web pages will be affected.
1294 -# A value between 20 and 110 would be sensible
1295 -# This may be ignored by the configured download manager.
1296 -initialtrickledelay = 20
1297 -
1298 -
1299 -
1300 -# Trickle delay
1301 -# This is the number of seconds a browser connection is left waiting
1302 -# before being sent more *something* to keep it alive. The
1303 -# *something* depends on the download manager chosen.
1304 -# This may be ignored by the configured download manager.
1305 -trickledelay = 10
1306 -
1307 -
1308 -
1309 -# Download Managers
1310 -# These handle downloads of files to be filtered and scanned.
1311 -# They differ in the method they deal with large downloads.
1312 -# Files usually need to be downloaded 100% before they can be
1313 -# filtered and scanned before being sent on to the browser.
1314 -# Normally the browser can just wait, but with content scanning,
1315 -# for example to AV, the browser may timeout or the user may get
1316 -# confused so the download manager has to do some sort of
1317 -# 'keep alive'.
1318 -#
1319 -# There are various methods possible but not all are included.
1320 -# The author does not have the time to write them all so I have
1321 -# included a plugin systam. Also, not all methods work with all
1322 -# browsers and clients. Specifically some fancy methods don't
1323 -# work with software that downloads updates. To solve this,
1324 -# each plugin can support a regular expression for matching
1325 -# the client's user-agent string, and lists of the mime types
1326 -# and extensions it should manage.
1327 -#
1328 -# Note that these are the matching methods provided by the base plugin
1329 -# code, and individual plugins may override or add to them.
1330 -# See the individual plugin conf files for supported options.
1331 -#
1332 -# The plugins are matched in the order you specify and the last
1333 -# one is forced to match as the default, regardless of user agent
1334 -# and other matching mechanisms.
1335 -#
1336 -downloadmanager = '/etc/dansguardian/downloadmanagers/fancy.conf'
1337 -#downloadmanager = '/etc/dansguardian/downloadmanagers/trickle.conf'
1338 -downloadmanager = '/etc/dansguardian/downloadmanagers/default.conf'
1339 -
1340 -
1341 -
1342 -# Content Scanners (Also known as AV scanners)
1343 -# These are plugins that scan the content of all files your browser fetches
1344 -# for example to AV scan. The options are limitless. Eventually all of
1345 -# DansGuardian will be plugin based. You can have more than one content
1346 -# scanner. The plugins are run in the order you specify.
1347 -# This is one of the few places you can have multiple options of the same name.
1348 -#
1349 -# Some of the scanner(s) require 3rd party software and libraries eg clamav.
1350 -# See the individual plugin conf file for more options (if any).
1351 -#
1352 -#contentscanner = '/etc/dansguardian/contentscanners/clamav.conf'
1353 -#contentscanner = '/etc/dansguardian/contentscanners/clamdscan.conf'
1354 -#!! Unimplemented !! contentscanner = '/etc/dansguardian/contentscanners/kavav.conf'
1355 -#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/kavdscan.conf'
1356 -#contentscanner = '/etc/dansguardian/contentscanners/icapscan.conf'
1357 -#!! Not compiled !! contentscanner = '/etc/dansguardian/contentscanners/commandlinescan.conf'
1358 -
1359 -
1360 -
1361 -# Content scanner timeout
1362 -# Some of the content scanners support using a timeout value to stop
1363 -# processing (eg AV scanning) the file if it takes too long.
1364 -# If supported this will be used.
1365 -# The default of 60 seconds is probably reasonable.
1366 -contentscannertimeout = 60
1367 -
1368 -
1369 -
1370 -# Content scan exceptions
1371 -# If 'on' exception sites, urls, users etc will be scanned
1372 -# This is probably not desirable behavour as exceptions are
1373 -# supposed to be trusted and will increase load.
1374 -# Correct use of grey lists are a better idea.
1375 -# (on|off) default = off
1376 -contentscanexceptions = off
1377 -
1378 -
1379 -
1380 -# Auth plugins
1381 -# These replace the usernameidmethod* options in previous versions. They
1382 -# handle the extraction of client usernames from various sources, such as
1383 -# Proxy-Authorisation headers and ident servers, enabling requests to be
1384 -# handled according to the settings of the user's filter group.
1385 -# Multiple plugins can be specified, and will be queried in order until one
1386 -# of them either finds a username or throws an error. For example, if Squid
1387 -# is configured with both NTLM and Basic auth enabled, and both the 'proxy-basic'
1388 -# and 'proxy-ntlm' auth plugins are enabled here, then clients which do not support
1389 -# NTLM can fall back to Basic without sacrificing access rights.
1390 -#
1391 -# If you do not use multiple filter groups, you need not specify this option.
1392 -#
1393 -#authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'
1394 -#authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf'
1395 -#authplugin = '/etc/dansguardian/authplugins/ident.conf'
1396 -#authplugin = '/etc/dansguardian/authplugins/ip.conf'
1397 -
1398 -
1399 -
1400 -# Re-check replaced URLs
1401 -# As a matter of course, URLs undergo regular expression search/replace (urlregexplist)
1402 -# *after* checking the exception site/URL/regexpURL lists, but *before* checking against
1403 -# the banned site/URL lists, allowing certain requests that would be matched against the
1404 -# latter in their original state to effectively be converted into grey requests.
1405 -# With this option enabled, the exception site/URL/regexpURL lists are also re-checked
1406 -# after replacement, making it possible for URL replacement to trigger exceptions based
1407 -# on them.
1408 -# Defaults to off.
1409 -recheckreplacedurls = off
1410 -
1411 -
1412 -
1413 -# Misc settings
1414 -
1415 -# if on it adds an X-Forwarded-For: <clientip> to the HTTP request
1416 -# header. This may help solve some problem sites that need to know the
1417 -# source ip. on | off
1418 -forwardedfor = off
1419 -
1420 -
1421 -# if on it uses the X-Forwarded-For: <clientip> to determine the client
1422 -# IP. This is for when you have squid between the clients and DansGuardian.
1423 -# Warning - headers are easily spoofed. on | off
1424 -usexforwardedfor = off
1425 -
1426 -
1427 -# if on it logs some debug info regarding fork()ing and accept()ing which
1428 -# can usually be ignored. These are logged by syslog. It is safe to leave
1429 -# it on or off
1430 -logconnectionhandlingerrors = on
1431 -
1432 -
1433 -
1434 -# Fork pool options
1435 -
1436 -# If on, this causes DG to write to the log file whenever child processes are
1437 -# created or destroyed (other than by crashes). This information can help in
1438 -# understanding and tuning the following parameters, but is not generally
1439 -# useful in production.
1440 -logchildprocesshandling = off
1441 -
1442 -# sets the maximum number of processes to spawn to handle the incoming
1443 -# connections. Max value usually 250 depending on OS.
1444 -# On large sites you might want to try 180.
1445 -maxchildren = 120
1446 -
1447 -
1448 -# sets the minimum number of processes to spawn to handle the incoming connections.
1449 -# On large sites you might want to try 32.
1450 -minchildren = 8
1451 -
1452 -
1453 -# sets the minimum number of processes to be kept ready to handle connections.
1454 -# On large sites you might want to try 8.
1455 -minsparechildren = 4
1456 -
1457 -
1458 -# sets the minimum number of processes to spawn when it runs out
1459 -# On large sites you might want to try 10.
1460 -preforkchildren = 6
1461 -
1462 -
1463 -# sets the maximum number of processes to have doing nothing.
1464 -# When this many are spare it will cull some of them.
1465 -# On large sites you might want to try 64.
1466 -maxsparechildren = 32
1467 -
1468 -
1469 -# sets the maximum age of a child process before it croaks it.
1470 -# This is the number of connections they handle before exiting.
1471 -# On large sites you might want to try 10000.
1472 -maxagechildren = 500
1473 -
1474 -
1475 -# Sets the maximum number client IP addresses allowed to connect at once.
1476 -# Use this to set a hard limit on the number of users allowed to concurrently
1477 -# browse the web. Set to 0 for no limit, and to disable the IP cache process.
1478 -maxips = 0
1479 -
1480 -
1481 -
1482 -# Process options
1483 -# (Change these only if you really know what you are doing).
1484 -# These options allow you to run multiple instances of DansGuardian on a single machine.
1485 -# Remember to edit the log file path above also if that is your intention.
1486 -
1487 -# IPC filename
1488 -#
1489 -# Defines IPC server directory and filename used to communicate with the log process.
1490 -ipcfilename = '/tmp/.dguardianipc'
1491 -
1492 -# URL list IPC filename
1493 -#
1494 -# Defines URL list IPC server directory and filename used to communicate with the URL
1495 -# cache process.
1496 -urlipcfilename = '/tmp/.dguardianurlipc'
1497 -
1498 -# IP list IPC filename
1499 -#
1500 -# Defines IP list IPC server directory and filename, for communicating with the client
1501 -# IP cache process.
1502 -ipipcfilename = '/tmp/.dguardianipipc'
1503 -
1504 -# PID filename
1505 -#
1506 -# Defines process id directory and filename.
1507 -#pidfilename = '/var/run/dansguardian.pid'
1508 -
1509 -# Disable daemoning
1510 -# If enabled the process will not fork into the background.
1511 -# It is not usually advantageous to do this.
1512 -# on|off (defaults to off)
1513 -nodaemon = off
1514 -
1515 -# Disable logging process
1516 -# on|off (defaults to off)
1517 -nologger = off
1518 -
1519 -# Enable logging of "ADs" category blocks
1520 -# on|off (defaults to off)
1521 -logadblocks = off
1522 -
1523 -# Enable logging of client User-Agent
1524 -# Some browsers will cause a *lot* of extra information on each line!
1525 -# on|off (defaults to off)
1526 -loguseragent = off
1527 -
1528 -# Daemon runas user and group
1529 -# This is the user that DansGuardian runs as. Normally the user/group nobody.
1530 -# Uncomment to use. Defaults to the user set at compile time.
1531 -# Temp files created during virus scanning are given owner and group read
1532 -# permissions; to use content scanners based on external processes, such as
1533 -# clamdscan, the two processes must run with either the same group or user ID.
1534 -#daemonuser = 'clamav'
1535 -#daemongroup = 'clamav'
1536 -
1537 -# Soft restart
1538 -# When on this disables the forced killing off all processes in the process group.
1539 -# This is not to be confused with the -g run time option - they are not related.
1540 -# on|off (defaults to off)
1541 -softrestart = off
1542 -
1543 -# Mail program
1544 -# Path (sendmail-compatible) email program, with options.
1545 -# Not used if usesmtp is disabled (filtergroup specific).
1546 -mailer = '/usr/sbin/sendmail -t'

admin@koozali.org
ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed