Stop porn for God's sake:
If you want to restrict users so that they are denied access to certain sites, like porn
sites, etc. Then you can make an acl for bad sites put all the possible words which are
normally part of url of those bad sites, in a text file with each word at separate line.
Create and block the acl as follows in the squid.conf file:
acl badsites url_regex -i "/etc/squid/badsites.txt"
http_access deny badsites
It should be noted that the placement of http_access lines are very important in
SQUID's expected behavior. You need to deny badsites BEFORE allowing the
http_access to your client src acl.
Your configuration with blocked sites would look like this:
acl badsites url_regex -i "/etc/squid/badsites.txt"
acl mynet src 192.168.1.0/24
http_access deny badsites
http_access allow mynet
http_access allow localhost
http_access deny all
Your badistes file should contain all words on separate lines which you want to be
search in the URL and then blocked by SQUID. An example badsites.txt file is
below:
sex
xxx
movies
This is quite effective approach. You may need to watch your
/var/log/squid/access.log for such sites and add those names to this file.