SquidGuard

HOME Downloads Documentation Development Blacklists Contributions Contact


Welcome to squidGuard


SquidGuard is a URL redirector used to use blacklists with the proxysoftware Squid. There are two big advantages to squidguard: it is fast and it is free. SquidGuard is published under GNU Public License.

New: squidGuard version 1.5 beta available with XSS fix for download

Current stable version: 1.4

New Features:
  • Authentication against mysql database.
  • Configurable default behaviour.
  • Further enhancements and bug fixes.
Some more details about features and bug fixes can be found on the 1.4 feature page.


Available patches for version 1.4:
  • Patch-20091015: Fixes a buffer overflow problem and prevents squidGuard from going into emergency mode when overlong URLs are encountered (they can be perfectly legal). See the Readme file for details about applying the patch.
  • Patch-20091019: Fixes two bypass problems with URLs having a length closed to the defined MAX_BUF value (4096). See the Readme file for details about applying the patch.
  • Patch-20150201: Fixes a XSS vulnerability in the blocking script squidGuard.cgi See the Readme file for details about applying the patch.


Available patches for version 1.3:
  • Patch-20071117: Fixes a problem with the progress bar creating too much output when run in an cronjob or similar. See the Readme file for details about applying the patch.
  • Patch-20080613: Fixes a problem with trailing dots in domain names. Relevant when running squid version 3.0 STABLE1 to at least STABLE5. See the Readme file and the advisory SG-2008-06-13 for details about applying the patch.
  • Patch-20080714: Fixes two problems: The output of the progress bar went to squid which complained about that. Secondly, when an URL was requested, that ended with "://" squidGuard crashed. See the Readme file for details about applying the patch.
  • Patch-20091015: Fixes a buffer overflow problem and prevents squidGuard from going into emergency mode when overlong URLs are encountered (they can be perfectly legal). See the Readme file for details about applying the patch.
  • Patch-20091019: Fixes two bypass problems with URLs having a length closed to the defined MAX_BUF value (4096). See the Readme file for details about applying the patch.
  • Patch-20150201: Fixes a XSS vulnerability in the blocking script squidGuard.cgi See the Readme file for details about applying the patch.



Please find all information about installing and configuring squidGuard in the Documentation section.

In work for version 1.5:
  • LDAP authentication based on ip addresses.
  • Syslog support.
  • Further enhancements and bug fixes.

Note: After the release of 1.5 there will be an interims release with no new features. It is necessary to tidy up the source code and this will be done as soon as 1.5 is final.

For tips, hints and questions the squidGuard mailinglist is available. This mailinglist is moderated. If you want to subscribe to the squidGuard list please use: http://www.shalla.de/mailman/listinfo/squidguard




HOME
About squidGuard
History
Mailinglist
Advisories


  © Powered by Shalla Secure Services KG 2007-2012