I should probably not open my yap since I know nothing about this, but do you have/need a secured verson of your block page for redirecting of https requests?<br><br><div><span class="gmail_quote">On 10/12/06, <b class="gmail_sendername">
David Bendit</b> &lt;<a href="mailto:DarkElf109@ibendit.com">DarkElf109@ibendit.com</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>Hey there,<br><br>In the Paradise Valley School District, we've switched from WebSense to<br>a Debian server running Squid and Squidguard for blocking sites. For the
<br>past 2 months or so, everything's gone perfectly. However, we've hit a<br>snag, and I was wondering if anybody on here could provide some assistance.<br><br>Normally, when a user accesses a site, the request goes to Squid through
<br>transparent proxying, which sends it to the redirector, Squidguard.<br>Squidguard checks the URL against its blocklists, then either grabs the<br>queried page through Squid, or, if it's blocked, redirects to our block
<br>page. This all works fine.<br><br>However, when trying to block an HTTPS page, things get odd. The request<br>makes it through Squid into Squidguard, which checks the URL. Since the<br>site is blocked, it should grab the redirect page. However, it goes
<br>straight through. I'm not sure why it's doing this.<br><br>Looking at the Squidguard logs, while the normal redirect request is<br>issued with a GET, CONNECT is used for HTTPS. That's the only difference<br>I can find.
<br><br>In the Squid logs, the request doesn't even appear. Apparently, Squid<br>only logs the request on its way out of the redirector. Since Squidguard<br>issues a CONNECT request instead of a GET, I think it's leaving Squid
<br>and going out directly.<br><br>Does anybody know how to get around this problem?<br><br>Thanks,<br>David Bendit<br>-----BEGIN PGP SIGNATURE-----<br>Version: GnuPG v1.4.3 (MingW32)<br>Comment: Using GnuPG with Mozilla - 
<a href="http://enigmail.mozdev.org">http://enigmail.mozdev.org</a><br><br>iD8DBQFFLwa1/eN+mEehuEMRAufcAJ9vzdlDbqdYPRIzZU0Te131nTRulACdEJDA<br>8MzAR2lL0vuyHADK6z5Y5/k=<br>=h998<br>-----END PGP SIGNATURE-----<br>---------------------------------------------------
<br>PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.plug.phoenix.az.us">PLUG-discuss@lists.plug.phoenix.az.us</a><br>To subscribe, unsubscribe, or to change&nbsp;&nbsp;you mail settings:<br><a href="http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss">
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss</a><br></blockquote></div><br><br clear="all"><br>-- <br>Be who you are and say what you feel, because those who mind don't matter and those who matter don't mind.&nbsp;&nbsp;- Dr. Seuss