Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SquidGuard Bypass Bug (squidGuard Advisory: SG-2007-04-15)

    Scheduled Pinned Locked Moved pfSense Packages
    3 Posts 2 Posters 3.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mkuron
      last edited by

      The currently available SquidGuard package for pfSense has a bug that allows you to bypass URL filters (domain filters are unaffected).
      If you block e.g. the following URLs

      blog.oregonlive.com/popmusic/
      ftd.de/boersen_maerkte/aktien/

      you'll still be able to access them at

      http://blog.oregonlive.com///popmusic/
      http://www.ftd.de/boersen_maerkte/%61ktien/

      This bug affects all SquidGuard versions before 1.2.1 (pfSense uses 1.2.0) - http://www.squidguard.org/Doc/sg-2007-04-15.html .

      Software: pfSense 1.2.2-RELEASE
      Hardware: HP Workstation xw6000 (2x Xeon 2,8 GHz, 2GB RAM, 36 GB SCSI HDD)
      NICs: LAN: bge0, WAN: xl0, OPT1(WLAN): sis0
      Packages: squid, squidGuard

      1 Reply Last reply Reply Quote 0
      • D
        dvserg
        last edited by

        Thanks for report.

        SquidGuardDoc EN  RU Tutorial
        Localization ru_PFSense

        1 Reply Last reply Reply Quote 0
        • M
          mkuron
          last edited by

          Were you able to fix this bug yet?

          Software: pfSense 1.2.2-RELEASE
          Hardware: HP Workstation xw6000 (2x Xeon 2,8 GHz, 2GB RAM, 36 GB SCSI HDD)
          NICs: LAN: bge0, WAN: xl0, OPT1(WLAN): sis0
          Packages: squid, squidGuard

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.