Exploring the SafeSquid filter proxy
Active Web Content
You can take basically two approaches to filtering specific media content: You can either investigate content based on its MIME type (see /etc/mime.types
) or use content filtering by extension (e.g., .swf
). To do this, click on the Mime filtering configuration category and press the Enabled button to activate this module. Confirm by pressing Submit, and define a new rule with the following values in the Deny tab:
Enabled Yes Comment Flash File .*swf
Instead of using File
, you can use the Mime type
attribute, entering the values in Listing 3, for example. Depending on which website is called in the browser after enabling the new rule, the filter now hides Flash content. Note that not all Flash content has a suffix of .swf
or belongs to the MIME types shown in Listing 3.
Listing 3
MIME Types
Filtering by file extensions or MIME type, however, turned out to be fairly inconsistent in my daily test. Sometimes, the filter worked correctly and hid the undesirable Flash content; in other cases, it blocked the entire page. Additionally, you must create a filter for every potential Flash MIME type (or any extension) in Flash files so that the software actually hides all Flash content. However, this filter never works reliably whatever you do – in other words, this feature is no more than a gimmick.
When I inquired, the manufacturer promised to help all users with questions about filter rules and problems. Live support is staffed six days a week, and a free ticket system is also available to users of the free version, the vendor said.
Accessories
The Prefetching link in the configuration section contains a function for loading specific web pages into the SafeSquid cache before they are actually visited. You can determine in advance what content the module preloads. Once enabled, enter the web pages you want the proxy to load in advance under Prefetch queue on the main page. This helps SafeSquid serve up the page faster.
The Limits category in the configuration section gives you access to a powerful tool that lets you restrict the bandwidth for individual computers. Neat and useful: If you set the value for the Action field to Deny, you can set up automated and time-based surfing blocks for your kids.
On the other hand, if you want to define the period of use rather than blocks, you can use the example in Listing 4. If you need specific redirections, you can use the URL redirecting category to redirect website calls to other URLs.
Listing 4
Defining Limits
Modules and Add-On Software
SafeSquid allows lets you embed additional modules, and cooperates with several well-known open source tools. These include many useful components, such as the ability to disable chat within Gmail, or a collection of rules that automatically hide banners on web pages. The SafeSquid website offers a list of all available add-ons [4].
Integrating the extensions is quite simple: Save the required add-on as an XML file; then – in the SafeSquid web interface – press Load Settings. Next, type the path to the XML file and check No for Overwrite. Confirm by pressing Submit. To save the settings, press Save. Instead of first saving the file locally, the software lets you copy the link to the file directly into the input box for the configuration. The settings are enabled immediately.
The SafeSquid website [5] also has a list of tools that work with SafeSquid. The most interesting tools for home users are stored in the Log Analyzers category. These tools will process the SafeSquid logfiles so that they can be read conveniently in a browser. For example, Webalizer is a well-known tool that (among other things) breaks down web usage by hits, visited websites, and the volume of traffic per day or month.
« Previous 1 2 3 Next »
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
So Long Neofetch and Thanks for the Info
Today is a day that every Linux user who enjoys bragging about their system(s) will mourn, as Neofetch has come to an end.
-
Ubuntu 24.04 Comes with a “Flaw"
If you're thinking you might want to upgrade from your current Ubuntu release to the latest, there's something you might want to consider before doing so.
-
Canonical Releases Ubuntu 24.04
After a brief pause because of the XZ vulnerability, Ubuntu 24.04 is now available for install.
-
Linux Servers Targeted by Akira Ransomware
A group of bad actors who have already extorted $42 million have their sights set on the Linux platform.
-
TUXEDO Computers Unveils Linux Laptop Featuring AMD Ryzen CPU
This latest release is the first laptop to include the new CPU from Ryzen and Linux preinstalled.
-
XZ Gets the All-Clear
The back door xz vulnerability has been officially reverted for Fedora 40 and versions 38 and 39 were never affected.
-
Canonical Collaborates with Qualcomm on New Venture
This new joint effort is geared toward bringing Ubuntu and Ubuntu Core to Qualcomm-powered devices.
-
Kodi 21.0 Open-Source Entertainment Hub Released
After a year of development, the award-winning Kodi cross-platform, media center software is now available with many new additions and improvements.
-
Linux Usage Increases in Two Key Areas
If market share is your thing, you'll be happy to know that Linux is on the rise in two areas that, if they keep climbing, could have serious meaning for Linux's future.
-
Vulnerability Discovered in xz Libraries
An urgent alert for Fedora 40 has been posted and users should pay attention.