[K12OSN] rsyncing blacklists from mesd

Eric Harrison eharrison at mail.mesd.k12.or.us
Thu Jun 23 05:18:46 UTC 2005 

On Wed, 22 Jun 2005, Bill Bardon wrote:

> On Wednesday, Jun 22 Rob Owens wrote:
>> 1)  How often should I rsync my blacklist?
>
> Don't know the answer to this one.  Will be interested to find out
> myself.

Updates usually happen once a day. The K12LTSP squidGuard package is
set to automatically sync at 5:00am every day.

>> 2)  Should I use the --delete option?
> No.  The --delete is an rsync option that works on a file-by-file basis,
> so would do you no good if you're just rsyncing one tar file.

No, I you probably don't want to use --delete.  The "--delete" option
will likley remove any of your custom & local blacklists. Without
the "--delete" option, only specific blacklist categories are
updated. You can see the list by running this command:

 	rsync squidguard.mesd.k12.or.us::filtering


>> 3)  When I rsync'd the first time, the owner and group
>> for all files and directories showed up on my machine
>> as "23".  Is the proper way to solve this to write a
>> script which rsyncs and then changes the ownership to
>> something that makes sense to my machine, or is there
>> a better way?
>
> I have a script that came with the Debian install of squidguard that
> does pretty much just what you described.  It sets the correct owner and
> permissions, then updates the squidguard db files and restarts squid.
> Note, it doesn't included the rsync itself.
>
> Since it's so small, I can quote the whole thing here:

This script would work if you are rolling your own. The user needs
to be changed from "proxy.proxy" to "squid.squid" and the path
from "/var/lib/squidguard/db" to "/var/squidGuard/blacklists/".

I'll attach the K12LTSP update script.

> #! /bin/sh
> # db update script
> #
>
> echo -n "Double checking directory and file permissions..."
> chown -R proxy.proxy /var/lib/squidguard/db >/dev/null 2>&1
> chmod 2770 /var/lib/squidguard/db >/dev/null 2>&1
> echo "done!"
> echo -n "Re-building SquidGuard db files..."
> su - proxy -c "squidGuard -C all" >/dev/null 2>&1
> su - proxy -c "squidGuard -u" >/dev/null 2>&1
> echo "done!"
> if [ -e /etc/init.d/squid ]; then
>        echo -n "Reloading Squid..."
>        /etc/init.d/squid reload >/dev/null 2>&1
>        echo "done!"
> fi


-Eric
-------------- next part --------------
#!/bin/sh

TARGET=/var/squidGuard/blacklists

cd $TARGET || exit

# only run if squidGuard is active!
[ "`ps auxw | grep squid[G]uard`" ] || exit

rsync -az squidguard.mesd.k12.or.us::filtering $TARGET

for DIR in `ls $TARGET`
do
        if [ -f $DIR/domains.include ]
        then
                TMP=$RANDOM
                cat $DIR/domains $DIR/domains.include | sort | uniq > $DIR/domains.$TMP
                mv -f $DIR/domains.$TMP $DIR/domains
        fi
        if [ -f $DIR/urls.include ]
        then
                TMP=$RANDOM
                cat $DIR/urls $DIR/urls.include | sort | uniq > $DIR/urls.$TMP
                mv -f $DIR/urls.$TMP $DIR/urls
        fi
done

/usr/sbin/squidGuard -c /etc/squid/squidGuard.conf  -C all
# /usr/sbin/squidGuard -c /etc/squid/squidGuard.conf  -u

chown -R squid.squid $TARGET
chown -R squid.squid /var/log/squidGuard/

sleep 5s

/usr/bin/killall -HUP squid

More information about the K12OSN mailing list