Bug 11975

Summary: Squid: add RBL/URIBL lookup helpers
Product: IPFire Reporter: Peter Müller <peter.mueller>
Component: ---Assignee: Assigned to nobody - feel free to grab it and work on it <nobody>
Status: NEW --- QA Contact: Peter Müller <peter.mueller>
Severity: Balancing    
Priority: Will affect an average number of users CC: michael.tremer, ummeegge
Version: 2Keywords: NewFeature, Security
Hardware: all   
OS: All   
See Also: https://bugzilla.ipfire.org/show_bug.cgi?id=11270

Description Peter Müller 2019-01-22 20:33:06 UTC 
At the moment, it is not possible to perform instant URIBL/RBL lookups for a domain or an IP address in Squid directly. Instead, one needs to use SquidGuard, which is able to handle URIBL stuff, but cannot check IPs against RBLs.

There are two small Python scripts (https://github.com/twesterhever/squid-dnsbl) which can be used as a external Squid ACL helper, thus implementing this feature.

Since I consider this being a useful feature to protect against malicious domains or IP addresses, I would like to have this in IPFire.

Because I am not very good at writing Perl code for the WebUI (some settings formular needs to be integrated in the proxy CGI file if we do this), I was courious if Erik could support me. :-)

Thanks, and best regards,
Peter Müller