Squid Listen on Other Port ( Squid Configure Port Listing with SELinux)

Posted on in Categories , , , , , , , , , last updated April 20, 2009

My Squid proxy server running on port 3128. Since this is frequently scanned by adversaries looking for proxy servers; I’ve changed port to 10000 and restart squid. But my squid is not working on port # 10000 it only works on port # 3128? How do I force Squid to listen on uncommon port under CentOS Linux v5.3?

How To Secure Apache Proxy Server (mod_proxy)

Posted on in Categories , , , , , , , , , last updated May 31, 2008

I’ve proxy (mod_proxy) enabled for Apache under Debian Linux 4.0 server. I’d like to use this to improve performance, but I don’t want an open proxy that can be used by anyone on the Internet? How do I secure my proxy as limiting access is essential as I’m using a forward proxy?

Squid Block any Domain Name Accessing the Internet

Posted on in Categories , , , , last updated February 6, 2008

Q. How do I block any website accessing the Internet using squid proxy server?

A. You can simply use squid ACL to block access to any web site. There are 3 steps:

#1. Create a text file with blocked domain name list such as baddomain1.com, mail.yahoo.com, gmail.com and so on

#2. Define Acl

#3. Restart squid

First, create a file called /etc/squid/blocked.domains.acl
# vi /etc/squid/blocked.domains.acl
Append domain names,
gmail.com
baddomain.com
sex.com
mail.yahoo.com

Save and close the file. Open squid.conf file:
# vi /etc/squid/squid.conf
Create acl called blockeddomain:
acl blockeddomain dstdomain "/etc/squid/blocked.domains.acl"
Deny http access, enter:
http_access deny blockeddomain
Close and save the file. Restart squid proxy server:
# /etc/init.d/squid restart