SquidGuard: Ignores blocklist domains when redirecting (301/302)
guru_meditation last edited by
It is a typical scenario for tracking sites that when you click on a link, you get redirected several times before arriving on the real site.
In my case it was econda-monitor.de -> tradedoubler.com -> shopping site.
Both Econda and tradedoubler domains are blacklisted under "Domains list" in SquidGuard. Nevertheless, when the browser reveives a
HTTP/1.0 302 Moved Temporarily Location: http://www.econda-monitor.de/link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah
and starts the redirect:
GET /link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah HTTP/1.1 User-Agent: Opera 10.63 (X11; Linux i686; U; en) Host: www.econda-monitor.de Accept: text/html, application/xml;q=0.9, application/xhtml+xml, image/png, image/jpeg, image/gif Accept-Language: en-US Accept-Charset: utf-8, utf-16, iso-8859-1;q=0.5, *;q=0.1 Accept-Encoding: deflate, gzip, x-gzip, identity, *;q=0 Connection: Keep-Alive
… SquidGuard seems to sleep and does not block the request. The Econda webserver would respond with a further 302 to tradedoubler.com, which is not blocked either. Only when I add both domain names in "Expressions", they get blocked.
Any one had the same problems? Is this a bug, design flaw or whatever?
pfsense is 1.2.3, Squid is version 2.7.9_4, SquidGuard 1.3-03.
dvserg last edited by
And Configs/Screenshots ?