I have a little but irritating problem with the web filter module.
I’m using the web filter module essentially to filter publicities, propagandas for a better comfort.
But since a time ( I can’t defend when or what’s occur) some banners gone through the filter.
I would like to correct this…
As you can see in this pict, there’s a banner that com from googleads.g.doubleclick.net that normally is shoutouts be blocked.
I had already try to change the blacklist, without success.
And you give me the right direction, the right tips:
When I tried to put “googleads.g.doubleclick.net” in the global blacklist with Safari on the Mac… MacOs transform the “googleads” in “google ads” with a space
when I insert the same syntax in the blacklist with Safari on the ipad…it’s work.
These ads are displaying without apparent links, so I don’t know what to block…
Did you have any suggestion, please?
Edit: looking with the web inspector, I find more domains to block…
But I’m afraid that I will be able to use a javascript blocker to avoid self-hosting ads
The purple banner, the VIVO ads is a adclick.g.douclick.net stuff ( as you can see at the bottom of the pic.
This domain is in the blacklist
I have this with the Mac and with the ipad, so I think it isn’t a malware
Edit: @dev_team are joker allowed? i.e *.doubleclick.net…
I think the problem can be in another level:
in the squid log, we can see all that is requested by the client…
But what about stuff, or ads, push by the visited server?
is the black list is treated by shorewall from the wan to lan?
Sorry to continue this monologue but I would like to resolve this issue ( for me this is an issue)
There’s thing I would like to investigate, and I need some information:
Apparently, the blacklist is for squidguard only, this blacklist isn’t treated at the shorewall level.
It seem that a script can inject a banner throughout the proxy!
My next question is: How can I have the exact squid configuration?
I would like to test Nethserver with Privoxy, to chain Squid/squidgard and Privoxy…
I want a good privacy and anti tracking feature on my network level…
Edit: What do you think to use fail2ban and the blacklist to do the job?
fail2ban read logs, doing regex on it and blocking an IP for a determined time, to a full access or only on certain ports. It is not a DPI, nor a squidguard like software.
I can be wrong but it is not the purpose of fail2ban
But ( yes, with me there’s alway a “but”… I alway want more, improve things ) I want to do this adblocking at my entry network level…
I really think it could be a good, a great feature for Netserver to do fine adblocking task.
And, to justify more yet, Untangle, Pfsense, ClearOS, dd-wrt are doing the adblock task… So, that Nethserver isn’t doing this very well is not a good thing.
It will be better with this feature… and embedded feature will be better yet
Is someone want to help me to improve Nethserver this way?
@dev_team:
I will suggest one more idea than can be a good improvement for Nethserver…
For those who want to block something, without using the proxy cache and/or the proxy filter, or in complementation:
To import the blacklist no only for the squidguard, but for the host list too ( any list yoyo.org , university Toulouse…)
This way with or without squid guard… Netserver will have the possibility to filter.
One more function for NethServer!!!