Bug 11975 - Squid: add RBL/URIBL lookup helpers
Summary: Squid: add RBL/URIBL lookup helpers
Status: NEW
Alias: None
Product: IPFire
Classification: Unclassified
Component: --- (show other bugs)
Version: 2
Hardware: all All
: Will affect an average number of users Balancing
Assignee: Assigned to nobody - feel free to grab it and work on it
QA Contact: Peter Müller
URL:
Keywords: NewFeature, Security
Depends on:
Blocks:
 
Reported: 2019-01-22 20:33 UTC by Peter Müller
Modified: 2019-10-13 11:00 UTC (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Peter Müller 2019-01-22 20:33:06 UTC 
At the moment, it is not possible to perform instant URIBL/RBL lookups for a domain or an IP address in Squid directly. Instead, one needs to use SquidGuard, which is able to handle URIBL stuff, but cannot check IPs against RBLs.

There are two small Python scripts (https://github.com/twesterhever/squid-dnsbl) which can be used as a external Squid ACL helper, thus implementing this feature.

Since I consider this being a useful feature to protect against malicious domains or IP addresses, I would like to have this in IPFire.

Because I am not very good at writing Perl code for the WebUI (some settings formular needs to be integrated in the proxy CGI file if we do this), I was courious if Erik could support me. :-)

Thanks, and best regards,
Peter Müller