Не запускается связка squd+squdguard

[dormidont3]

Не пойму в чём проблема... Не могу запустить работу тих программ вместе... Вот настройки... Может что забыл?
в сквид дописал

Код: [Выделить]

url_rewrite_program /etc/squidGuard
url_rewrite_children 5
redirector_bypass on
хотел начать с малого, по этому решил блочить пока только порно и банеры

Код: [Выделить]

#
# CONFIG FILE FOR SQUIDGUARD
#

dbhome /etc/squidGuard/blacklists
logdir /etc/squidGuard/log

#
# TIME RULES:
# abbrev for weekdays:
# s = sun, m = mon, t =tue, w = wed, h = thu, f = fri, a = sat


#
# REWRITE RULES:
#


#
# SOURCE ADDRESSES:
#

src bkmz {
ip 192.168.1.1-192.168.1.254
}


#
# DESTINATION CLASSES:
#

dest ads {
domainlist ads/domains
urllist ads/urls
expressionlist ads/expressions
redirect http://www.linux.ru/files/u2880/Tux_0.jpg
}

dest porn {
domainlist porn/domains
urllist porn/urls
expressionlist porn/expressions
redirect http://www.yandex.ru
}


acl {
bkmz {
pass !ads !porn
}

default {
pass local none
rewrite dmz
redirect http://yandex.ru
}
}

выдал права

Код: [Выделить]

ls -la
total 24
drwxr-xr-x   4 squid squid 4096 Feb 22 00:40 .
drwxr-xr-x 117 root  root  8192 Feb 22 00:40 ..
drwxr-xr-x  93 squid squid 4096 Feb 21 11:22 blacklists
drwxr-xr-x   2 squid squid 4096 Feb 21 22:38 log
-rw-r--r--   1 squid squid  705 Feb 21 23:02 squidGuard.conf

И в итоге при рестарте сквида получаю

Код: [Выделить]

[root@comp-Pentium-Dual-679ab3 squid]# /etc/init.d/squid restart
Stopping squid service:                                                                   [ DONE ]
Starting squid service:                                                                   [ DONE ]
[root@comp-Pentium-Dual-679ab3 squid]# /etc/init.d/squid status
squid is dead, but stale PID file exists

пробовал убить все процессы связанные со сквидом, удалить PID и снова запустить и та же история...
При этом если закоментировать строчку

Код: [Выделить]

url_rewrite_program /etc/squidGuardвсё стартует нормально

вот ещё на всякий случай, может будет полезно... Я понимаю что доступ закрыт, но как его открыть? Я же выдал сквиду права на папку squidGuard...

Код: [Выделить]

2011/02/22 00:46:47| [root@comp-Pentium-Dual-679ab3 squid]# cat cache.log | grep squidGuard
helperOpenServers: Starting 5/5 'squidGuard' processes
2011/02/22 00:46:47| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/22 00:46:47| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/22 00:46:47| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/22 00:46:47| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/22 00:46:47| ipcCreate: /etc/squidGuard: (13) Permission denied

при попытке запустить вручную получаю вот что

Код: [Выделить]

[root@comp-Pentium-Dual-679ab3 ~]# squidGuard -c /etc/squidGuard/squidGuard.conf -d
2011-02-22 08:38:54 [5703] New setting: dbhome: /etc/squidGuard/blacklists
2011-02-22 08:38:54 [5703] New setting: logdir: /etc/squidGuard/log
2011-02-22 08:38:54 [5703] init domainlist /etc/squidGuard/blacklists/ads/domains
2011-02-22 08:38:54 [5703] init urllist /etc/squidGuard/blacklists/ads/urls
2011-02-22 08:38:54 [5703] init expressionlist /etc/squidGuard/blacklists/ads/expressions
2011-02-22 08:38:54 [5703] init domainlist /etc/squidGuard/blacklists/porn/domains
2011-02-22 08:39:01 [5703] init urllist /etc/squidGuard/blacklists/porn/urls
2011-02-22 08:39:01 [5703] init expressionlist /etc/squidGuard/blacklists/porn/expressions
2011-02-22 08:39:01 [5703] squidGuard: ACL destination local is not defined in configfile /etc/squidGuard/squidGuard.conf
2011-02-22 08:39:01 [5703] Going into emergency mode
и дальше ничего не происходит...

[asket]

Неправильно прописан путь к squidGuard

Код: [Выделить]

url_rewrite_program /usr/bin/squidGuard -c /etc/squidGuard/squidGuard.conf
url_rewrite_children 30
url_rewrite_bypass on

и дальше ничего не происходит...

удалите local из дефолтного ACL. Или создайте его описание. Без этого squidGuard у Вас вылетает с ошибкой.

[dormidont3]

Попробовал закоментиоваь всё, что касалось local не помогло... всё равно не запускается. Переписал путь на...

Код: [Выделить]

url_rewrite_program /usr/bin/squidGuard -c /etc/squidGuard/squidGuard.confНе помогло...

[asket]

проверьте права на базу squidGuard. Вы ведь ее от рута создали.

[dormidont3]

Все базы принадлежат сквиду и с чтением тоже проблем нет

Код: [Выделить]

[root@comp-Pentium-Dual-679ab3 blacklists]# ls -la
total 380
drwxr-xr-x 93 squid squid 4096 Feb 21 11:22 .
drwxr-xr-x  4 squid squid 4096 Feb 22 00:40 ..
-rwxr-xr-x  1 squid squid 4391 Feb 21 11:22 CATEGORIES
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 abortion
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 ads
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 adult
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 aggressive
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 alcohol
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 antispyware
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 artnudes
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 astrology
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 audio-video
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 banking
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 beerliquorinfo
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 beerliquorsale
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 blog
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 books
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 celebrity
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 cellphones
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 chat
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 child
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 childcare
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 cleaning
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 clothing
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 contraception
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 culinary
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 dating
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 desktopsillies
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 dialers
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 drugs
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 ecommerce
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 entertainment
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 filehosting
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 filesharing
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 financial
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 frencheducation
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 gambling
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 games
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 gardening
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 government
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 guns
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 hacking
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 homerepair
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 humor
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 hunting
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 hygiene
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 instantmessaging
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 jewelry
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 jobsearch
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 kidstimewasting
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 magazines
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 mail
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 malware
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 manga
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 marketingware
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 medical
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 mixed_adult
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 mobile-phone
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 naturism
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 news
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 onlineauctions
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 onlinegames
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 onlinepayment
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 personalfinance
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 pets
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 phishing
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 porn
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 press
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 proxy
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 radio
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 reaffected
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 religion
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 remote-control
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 ringtones
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 searchengines
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 sect
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 sexuality
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 shopping
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 social_networks
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 socialnetworking
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 sportnews
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 sports
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 spyware
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 tobacco
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 updatesites
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 vacation
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 verisign
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 violence
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 virusinfected
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 warez
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 weapons
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 weather
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 webmail
drwxr-xr-x  2 squid squid 4096 Feb 21 11:22 whitelist


[dormidont3]

может вот так понятнее будет в чём причина?

Код: [Выделить]

2011/02/23 03:38:59| cat cache.log
helperOpenServers: Starting 5/5 'squidGuard' processes
2011/02/23 03:38:59| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/23 03:38:59| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/23 03:38:59| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/23 03:38:59| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/23 03:38:59| User-Agent logging is disabled.
2011/02/23 03:38:59| Referer logging is disabled.
2011/02/23 03:38:59| ipcCreate: /etc/squidGuard: (13) Permission denied
2011/02/23 03:38:59| Unlinkd pipe opened on FD 18
2011/02/23 03:38:59| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2011/02/23 03:38:59| Swap maxSize 2097152 + 8192 KB, estimated 161949 objects
2011/02/23 03:38:59| Target number of buckets: 8097
2011/02/23 03:38:59| Using 8192 Store buckets
2011/02/23 03:38:59| Max Mem  size: 8192 KB
2011/02/23 03:38:59| Max Swap size: 2097152 KB
2011/02/23 03:38:59| Version 1 of swap file with LFS support detected...
2011/02/23 03:38:59| Rebuilding storage in /var/spool/squid (DIRTY)
2011/02/23 03:38:59| Using Least Load store dir selection
2011/02/23 03:38:59| Set Current Directory to /var/spool/squid
2011/02/23 03:38:59| Loaded Icons.
2011/02/23 03:38:59| Accepting transparently proxied HTTP connections at 0.0.0.0, port 3128, FD 20.
2011/02/23 03:38:59| HTCP Disabled.
2011/02/23 03:38:59| Pinger socket opened on FD 22
2011/02/23 03:38:59| NETDB state reloaded; 895 entries, 7 msec
2011/02/23 03:38:59| Ready to serve requests.
2011/02/23 03:38:59| WARNING: redirector #1 (FD 9) exited
2011/02/23 03:38:59| WARNING: redirector #2 (FD 10) exited
2011/02/23 03:38:59| WARNING: redirector #3 (FD 11) exited
2011/02/23 03:38:59| WARNING: redirector #4 (FD 12) exited
2011/02/23 03:38:59| Too few redirector processes are running
FATAL: The redirector helpers are crashing too rapidly, need help!

Squid Cache (Version 3.0.STABLE19): Terminated abnormally.
CPU Usage: 0.068 seconds = 0.040 user + 0.028 sys
Maximum Resident Size: 0 KB
Page faults with physical i/o: 0
Memory usage for squid via mallinfo():
    total space in arena:    3868 KB
    Ordinary blocks:         3852 KB      6 blks
    Small blocks:               0 KB      2 blks
    Holding blocks:          8376 KB     13 blks
    Free Small blocks:          0 KB
    Free Ordinary blocks:      15 KB
    Total in use:           12228 KB 316%
    Total free:                15 KB 0%

[dormidont3]

Всё. разобрался и запустил. Остался только один вопрос... Подскажите где взять актуальную базу блокировки... Больше всего меня интересуют базы рекламмы в рунете, а то сейчас к примеру заходишь на зайцев.нет или рутрекер.орг и такое ощущение что ничего и не установлено... Хотя конечно не могу сказать, что ничего не блочится, часть рекламы всё же удаляется.