Walu,
The first thing you need to look at it ACL on squid. It should ideally have been the next step after installation.
<sample>
acl localnet src x.x.x.x/x #x.x.x.x is your network
http_access allow localnet
http_access deny all
</sampe>
This is a very flexible list. Work on customizing it for your need.
-----Original Message-----
From: Walubengo J <jwalu@yahoo.com>
Reply-to: Skunkworks forum <skunkworks@lists.my.co.ke>
To: skunk <skunkworks@my.co.ke>
Subject: [Skunkworks] help: squid+dansgaurdian setup compromised.
Date: Thu, 20 Aug 2009 23:32:13 -0700 (PDT)
hey,
I have a basic traditional NAT setup of squid+dansguardian on Linux Ubuntu 8.10. Squid as the proxy and dansguardian as the content manager. My network has suddenly started crawling and /var/log/dansguardian/access.log shows foreign IPs riding on my bandwidth and visiting graphic porn sites with impunity.
Could someone give pointers on where I need to tighten the configs to keep off the external bad boys and girls (IPs) from the riding my proxy server?
walu.
_______________________________________________
Skunkworks mailing list
Skunkworks@lists.my.co.ke
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
Other services @ http://my.co.ke
Other lists
-------------
Announce: http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
Science: http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
kazi: http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general