Hinzugefügt:

* URL-Filter git-svn-id: http://svn.ipfire.org/svn/ipfire/trunk@185 ea5c0bd1-69bd-2848-81d8-4f18e57aeed8
2026-04-26 19:00:34 +02:00 · 2006-06-30 14:25:35 +00:00
parent f28d0ddc6d
commit 10e4f2395e
23 changed files with 12128 additions and 7 deletions
--- a/html/cgi-bin/logs.cgi/urlfilter.dat
+++ b/html/cgi-bin/logs.cgi/urlfilter.dat
--- a/html/cgi-bin/proxy.cgi
+++ b/html/cgi-bin/proxy.cgi
@@ -130,6 +130,12 @@ open FILE, $browserdb;
@useragentlist = sort { reverse(substr(reverse(substr($a,index($a,',')+1)),index(reverse(substr($a,index($a,','))),',')+1)) cmp reverse(substr(reverse(substr($b,index($b,',')+1)),index(reverse(substr($b,index($b,','))),',')+1))} grep !/(^$)|(^\s*#)/,<FILE>;
 close(FILE);

+my %filtersettings=();
+$filtersettings{'CHILDREN'} = '5';
+if (-e "${General::swroot}/urlfilter/settings") {
+	&General::readhash("${General::swroot}/urlfilter/settings", \%filtersettings);
+}
+
 &General::readhash("${General::swroot}/ethernet/settings", \%netsettings);
 &General::readhash("${General::swroot}/main/settings", \%mainsettings);

@@ -152,6 +158,7 @@ if ($updacclrtr_addon) {

 &Header::showhttpheaders();

+$proxysettings{'ENABLE_FILTER'} = 'off';
 $proxysettings{'ACTION'} = '';
 $proxysettings{'VALID'} = '';

@@ -338,6 +345,15 @@ if (($proxysettings{'ACTION'} eq $Lang::tr{'save'}) || ($proxysettings{'ACTION'}
 		$errormessage = $Lang::tr{'invalid maximum outgoing size'};
 		goto ERROR;
 	}
+	if ($proxysettings{'ENABLE_FILTER'} eq 'on')
+	{
+		print FILE <<END
+redirect_program /usr/bin/squidGuard
+redirect_children $filtersettings{'CHILDREN'}
+
+END
+		;
+	}
 	if (!($proxysettings{'TIME_TO_HOUR'}.$proxysettings{'TIME_TO_MINUTE'} gt $proxysettings{'TIME_FROM_HOUR'}.$proxysettings{'TIME_FROM_MINUTE'}))
 	{
 		$errormessage = $Lang::tr{'advproxy errmsg time restriction'};
@@ -715,6 +731,10 @@ $checked{'ENABLE_BROWSER_CHECK'}{'off'} = '';
 $checked{'ENABLE_BROWSER_CHECK'}{'on'} = '';
 $checked{'ENABLE_BROWSER_CHECK'}{$proxysettings{'ENABLE_BROWSER_CHECK'}} = "checked='checked'";

+$checked{'ENABLE_FILTER'}{'off'} = '';
+$checked{'ENABLE_FILTER'}{'on'} = '';
+$checked{'ENABLE_FILTER'}{$proxysettings{'ENABLE_FILTER'}} = "checked='checked'";
+
 foreach (@useragentlist) {
 	@useragent = split(/,/);
 	$checked{'UA_'.@useragent[0]}{'off'} = '';
@@ -865,6 +885,14 @@ print <<END
 	</select>
 	</td>
 </tr>
+<tr>
+	<td colspan='4'><hr /><b>$Lang::tr{'urlfilter url filter'}</b></td>
+</tr>
+<tr>
+	<td width='25%' class='base'>$Lang::tr{'urlfilter enabled'}</td>
+	<td><input type='checkbox' name='ENABLE_FILTER' $checked{'ENABLE_FILTER'}{'on'} /></td>
+	<td colspan='2'>&nbsp;</td>
+</tr>
 </table>
 <hr size='1'>
 <table width='100%'>
@@ -3414,7 +3442,7 @@ END
        	if ($proxysettings{'ENABLE_FILTER'} eq 'on')
 	        {
        	        print FILE <<END
-redirect_program /usr/sbin/squidGuard
+redirect_program /usr/bin/squidGuard
 redirect_children $filtersettings{'CHILDREN'}

 END
--- a/html/cgi-bin/redirect.cgi
+++ b/html/cgi-bin/redirect.cgi
@@ -0,0 +1,498 @@
+#!/usr/bin/perl
+
+#
+# $Id: redirect.cgi,v 0.1 2004/09/26 00:00:00 marco Exp $
+#
+
+use CGI qw(param);
+
+$swroot="/var/ipfire";
+
+my %netsettings;
+my %filtersettings;
+
+&readhash("$swroot/ethernet/settings", \%netsettings);
+&readhash("$swroot/urlfilter/settings", \%filtersettings);
+
+$category=param("category");
+$url=param("url");
+$ip=param("ip");
+
+if ($filtersettings{'MSG_TEXT_1'} eq '') {
+	$msgtext1 = "A C C E S S &nbsp;&nbsp; D E N I E D";
+} else { $msgtext1 = $filtersettings{'MSG_TEXT_1'}; }
+if ($filtersettings{'MSG_TEXT_2'} eq '') {
+	$msgtext2 = "Access to the requested page has been denied";
+} else { $msgtext2 = $filtersettings{'MSG_TEXT_2'}; }
+if ($filtersettings{'MSG_TEXT_3'} eq '') {
+	$msgtext3 = "Please contact the Network Administrator if you think there has been an error";
+} else { $msgtext3 = $filtersettings{'MSG_TEXT_3'}; }
+
+if ($category eq '') { $category = '&nbsp;'; } else { $category = '['.$category.']'; }
+
+print "Pragma: no-cache\n";
+print "Cache-control: no-cache\n";
+print "Connection: close\n";
+print "Content-type: text/html\n\n";
+
+print <<END
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8"> 
+<title></title>
+</head>
+
+END
+;
+
+if (($filtersettings{'ENABLE_JPEG'} eq 'on') && (-e "/home/httpd/html/images/urlfilter/background.jpg"))
+{
+print <<END
+<body background="http://$netsettings{'GREEN_ADDRESS'}:81//images/urlfilter/background.jpg" bgcolor="#FFFFFF">
+END
+;
+} else {
+print <<END
+<body bgcolor="#FFFFFF">
+END
+;
+}
+
+print <<END
+
+<center>
+
+<table width="80%" cellspacing="10" cellpadding="5" border="0">
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana, arial, sans serif" color="#000000" size="1">
+		<b>$category</b>
+		</font>
+	</td>
+</tr>
+<tr>
+	<td bgcolor="#F4F4F4" align="center">
+		<table width="100%" cellspacing="20" cellpadding="20" border="0">
+			<tr>
+				<td nowrap bgcolor="#FF0000" align="center">
+					<font face="verdana, arial, sans serif" color="#FFFFFF" size="6">
+					<b>$msgtext1</b>
+					</font>
+				</td>
+			</tr>
+			<tr>
+				<td bgcolor="#E2E2E2" align="center">
+					<font face="verdana, arial, sans serif" color="#000000" size="4">
+					<b>$msgtext2</b>
+					</font>
+					<font face="verdana,arial,sans serif" color="#000000" size="2">
+END
+;
+
+if (!($url eq ""))
+{
+print <<END
+					<p>URL: <a href="$url">$url</a>
+END
+;
+}
+
+if (!($ip eq ""))
+{
+print <<END
+					<p>Client IP address: <i>$ip</i>
+END
+;
+}
+
+print <<END
+					<br><p>$msgtext3
+					</font>
+				</td>
+			</tr>
+	</td>
+</tr>
+</table>
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">Web Filtering by
+		</font>
+		<a href="http://www.ipcop.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">IPCop</b></a> and
+		<a href="http://www.squidguard.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">SquidGuard
+		</font></b></a>
+	</td>
+</tr>
+
+</table>
+
+</center>
+
+</body>
+
+</html>
+END
+;
+
+sub readhash
+{
+	my $filename = $_[0];
+	my $hash = $_[1];
+	my ($var, $val);
+
+	if (-e $filename)
+	{
+		open(FILE, $filename) or die "Unable to read file $filename";
+		while (<FILE>)
+		{
+			chop;
+			($var, $val) = split /=/, $_, 2;
+			if ($var)
+			{
+				$val =~ s/^\'//g;
+				$val =~ s/\'$//g;
+	
+				# Untaint variables read from hash
+				$var =~ /([A-Za-z0-9_-]*)/;        $var = $1;
+				$val =~ /([\w\W]*)/; $val = $1;
+				$hash->{$var} = $val;
+			}
+		}
+		close FILE;
+	}
+}
+#!/usr/bin/perl
+
+#
+# $Id: redirect.cgi,v 0.1 2004/09/26 00:00:00 marco Exp $
+#
+
+use CGI qw(param);
+
+$swroot="/var/ipfire";
+
+my %netsettings;
+my %filtersettings;
+
+&readhash("$swroot/ethernet/settings", \%netsettings);
+&readhash("$swroot/urlfilter/settings", \%filtersettings);
+
+$category=param("category");
+$url=param("url");
+$ip=param("ip");
+
+if ($filtersettings{'MSG_TEXT_1'} eq '') {
+	$msgtext1 = "A C C E S S &nbsp;&nbsp; D E N I E D";
+} else { $msgtext1 = $filtersettings{'MSG_TEXT_1'}; }
+if ($filtersettings{'MSG_TEXT_2'} eq '') {
+	$msgtext2 = "Access to the requested page has been denied";
+} else { $msgtext2 = $filtersettings{'MSG_TEXT_2'}; }
+if ($filtersettings{'MSG_TEXT_3'} eq '') {
+	$msgtext3 = "Please contact the Network Administrator if you think there has been an error";
+} else { $msgtext3 = $filtersettings{'MSG_TEXT_3'}; }
+
+if ($category eq '') { $category = '&nbsp;'; } else { $category = '['.$category.']'; }
+
+print "Pragma: no-cache\n";
+print "Cache-control: no-cache\n";
+print "Connection: close\n";
+print "Content-type: text/html\n\n";
+
+print <<END
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8"> 
+<title></title>
+</head>
+
+END
+;
+
+if (($filtersettings{'ENABLE_JPEG'} eq 'on') && (-e "/home/httpd/html/images/urlfilter/background.jpg"))
+{
+print <<END
+<body background="http://$netsettings{'GREEN_ADDRESS'}:81//images/urlfilter/background.jpg" bgcolor="#FFFFFF">
+END
+;
+} else {
+print <<END
+<body bgcolor="#FFFFFF">
+END
+;
+}
+
+print <<END
+
+<center>
+
+<table width="80%" cellspacing="10" cellpadding="5" border="0">
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana, arial, sans serif" color="#000000" size="1">
+		<b>$category</b>
+		</font>
+	</td>
+</tr>
+<tr>
+	<td bgcolor="#F4F4F4" align="center">
+		<table width="100%" cellspacing="20" cellpadding="20" border="0">
+			<tr>
+				<td nowrap bgcolor="#FF0000" align="center">
+					<font face="verdana, arial, sans serif" color="#FFFFFF" size="6">
+					<b>$msgtext1</b>
+					</font>
+				</td>
+			</tr>
+			<tr>
+				<td bgcolor="#E2E2E2" align="center">
+					<font face="verdana, arial, sans serif" color="#000000" size="4">
+					<b>$msgtext2</b>
+					</font>
+					<font face="verdana,arial,sans serif" color="#000000" size="2">
+END
+;
+
+if (!($url eq ""))
+{
+print <<END
+					<p>URL: <a href="$url">$url</a>
+END
+;
+}
+
+if (!($ip eq ""))
+{
+print <<END
+					<p>Client IP address: <i>$ip</i>
+END
+;
+}
+
+print <<END
+					<br><p>$msgtext3
+					</font>
+				</td>
+			</tr>
+	</td>
+</tr>
+</table>
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">Web Filtering by
+		</font>
+		<a href="http://www.ipcop.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">IPCop</b></a> and
+		<a href="http://www.squidguard.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">SquidGuard
+		</font></b></a>
+	</td>
+</tr>
+
+</table>
+
+</center>
+
+</body>
+
+</html>
+END
+;
+
+sub readhash
+{
+	my $filename = $_[0];
+	my $hash = $_[1];
+	my ($var, $val);
+
+	if (-e $filename)
+	{
+		open(FILE, $filename) or die "Unable to read file $filename";
+		while (<FILE>)
+		{
+			chop;
+			($var, $val) = split /=/, $_, 2;
+			if ($var)
+			{
+				$val =~ s/^\'//g;
+				$val =~ s/\'$//g;
+	
+				# Untaint variables read from hash
+				$var =~ /([A-Za-z0-9_-]*)/;        $var = $1;
+				$val =~ /([\w\W]*)/; $val = $1;
+				$hash->{$var} = $val;
+			}
+		}
+		close FILE;
+	}
+}
+#!/usr/bin/perl
+
+#
+# $Id: redirect.cgi,v 0.1 2004/09/26 00:00:00 marco Exp $
+#
+
+use CGI qw(param);
+
+$swroot="/var/ipfire";
+
+my %netsettings;
+my %filtersettings;
+
+&readhash("$swroot/ethernet/settings", \%netsettings);
+&readhash("$swroot/urlfilter/settings", \%filtersettings);
+
+$category=param("category");
+$url=param("url");
+$ip=param("ip");
+
+if ($filtersettings{'MSG_TEXT_1'} eq '') {
+	$msgtext1 = "A C C E S S &nbsp;&nbsp; D E N I E D";
+} else { $msgtext1 = $filtersettings{'MSG_TEXT_1'}; }
+if ($filtersettings{'MSG_TEXT_2'} eq '') {
+	$msgtext2 = "Access to the requested page has been denied";
+} else { $msgtext2 = $filtersettings{'MSG_TEXT_2'}; }
+if ($filtersettings{'MSG_TEXT_3'} eq '') {
+	$msgtext3 = "Please contact the Network Administrator if you think there has been an error";
+} else { $msgtext3 = $filtersettings{'MSG_TEXT_3'}; }
+
+if ($category eq '') { $category = '&nbsp;'; } else { $category = '['.$category.']'; }
+
+print "Pragma: no-cache\n";
+print "Cache-control: no-cache\n";
+print "Connection: close\n";
+print "Content-type: text/html\n\n";
+
+print <<END
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8"> 
+<title></title>
+</head>
+
+END
+;
+
+if (($filtersettings{'ENABLE_JPEG'} eq 'on') && (-e "/home/httpd/html/images/urlfilter/background.jpg"))
+{
+print <<END
+<body background="http://$netsettings{'GREEN_ADDRESS'}:81//images/urlfilter/background.jpg" bgcolor="#FFFFFF">
+END
+;
+} else {
+print <<END
+<body bgcolor="#FFFFFF">
+END
+;
+}
+
+print <<END
+
+<center>
+
+<table width="80%" cellspacing="10" cellpadding="5" border="0">
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana, arial, sans serif" color="#000000" size="1">
+		<b>$category</b>
+		</font>
+	</td>
+</tr>
+<tr>
+	<td bgcolor="#F4F4F4" align="center">
+		<table width="100%" cellspacing="20" cellpadding="20" border="0">
+			<tr>
+				<td nowrap bgcolor="#FF0000" align="center">
+					<font face="verdana, arial, sans serif" color="#FFFFFF" size="6">
+					<b>$msgtext1</b>
+					</font>
+				</td>
+			</tr>
+			<tr>
+				<td bgcolor="#E2E2E2" align="center">
+					<font face="verdana, arial, sans serif" color="#000000" size="4">
+					<b>$msgtext2</b>
+					</font>
+					<font face="verdana,arial,sans serif" color="#000000" size="2">
+END
+;
+
+if (!($url eq ""))
+{
+print <<END
+					<p>URL: <a href="$url">$url</a>
+END
+;
+}
+
+if (!($ip eq ""))
+{
+print <<END
+					<p>Client IP address: <i>$ip</i>
+END
+;
+}
+
+print <<END
+					<br><p>$msgtext3
+					</font>
+				</td>
+			</tr>
+	</td>
+</tr>
+</table>
+
+<tr>
+	<td bgcolor="#C0C0C0" align="right">
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">Web Filtering by
+		</font>
+		<a href="http://www.ipcop.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">IPCop</b></a> and
+		<a href="http://www.squidguard.org" target="_blank"><b>
+		<font face="verdana,arial,sans serif" color="#FFFFFF" size="1">SquidGuard
+		</font></b></a>
+	</td>
+</tr>
+
+</table>
+
+</center>
+
+</body>
+
+</html>
+END
+;
+
+sub readhash
+{
+	my $filename = $_[0];
+	my $hash = $_[1];
+	my ($var, $val);
+
+	if (-e $filename)
+	{
+		open(FILE, $filename) or die "Unable to read file $filename";
+		while (<FILE>)
+		{
+			chop;
+			($var, $val) = split /=/, $_, 2;
+			if ($var)
+			{
+				$val =~ s/^\'//g;
+				$val =~ s/\'$//g;
+	
+				# Untaint variables read from hash
+				$var =~ /([A-Za-z0-9_-]*)/;        $var = $1;
+				$val =~ /([\w\W]*)/; $val = $1;
+				$hash->{$var} = $val;
+			}
+		}
+		close FILE;
+	}
+}
--- a/html/cgi-bin/urlfilter.cgi
+++ b/html/cgi-bin/urlfilter.cgi