SquidGuard: Ignores blocklist domains when redirecting (301/302)

  • It is a typical scenario for tracking sites that when you click on a link, you get redirected several times before arriving on the real site.

    In my case it was econda-monitor.de -> tradedoubler.com -> shopping site.
    Both Econda and tradedoubler domains are blacklisted under "Domains list" in SquidGuard. Nevertheless, when the browser reveives a

    HTTP/1.0 302 Moved Temporarily
    Location: http://www.econda-monitor.de/link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah

    and starts the redirect:

    GET /link/st?emkd=12345678&pbid=1&advid=200&campaign=&target=http%3A%2F%2Fclkde.tradedoubler.com%2Fblah HTTP/1.1
    User-Agent: Opera 10.63 (X11; Linux i686; U; en)
    Host: www.econda-monitor.de
    Accept: text/html, application/xml;q=0.9, application/xhtml+xml, image/png, image/jpeg, image/gif
    Accept-Language: en-US
    Accept-Charset: utf-8, utf-16, iso-8859-1;q=0.5, *;q=0.1
    Accept-Encoding: deflate, gzip, x-gzip, identity, *;q=0
    Connection: Keep-Alive

    … SquidGuard seems to sleep and does not block the request. The Econda webserver would respond with a further 302 to tradedoubler.com, which is not blocked either. Only when I add both domain names in "Expressions", they get blocked.

    Any one had the same problems? Is this a bug, design flaw or whatever?

    pfsense is 1.2.3, Squid is version 2.7.9_4, SquidGuard 1.3-03.

  • And Configs/Screenshots ?

Log in to reply