Date: Wed, 10 Sep 2008 13:10:52 +0200 (CEST) From: Oliver Fromme <olli@lurza.secnetix.de> To: freebsd-chat@FreeBSD.ORG, david@catwhisker.org Subject: Re: Google Chrome Message-ID: <200809101110.m8ABAqwe082446@lurza.secnetix.de> In-Reply-To: <20080908010956.GT11991@bunrab.catwhisker.org>
next in thread | previous in thread | raw e-mail | index | archive | help
David Wolfskill wrote: > g1-30(6.3-S)[4] host doubleclick.com > doubleclick.com has address 127.0.0.1 > g1-30(6.3-S)[5] host \*.doubleclick.com > *.doubleclick.com has address 127.0.0.1 > g1-30(6.3-S)[6] > > (My internal resolvers have a file that lists domains where: > * they are configured to be masters for the domains in question and > * everything resolves to 127.0.0.1. > It does clutter the Apache error log a bit, but otherwise tends to speed > page loading, as long as one doesn't object too strongly to 404 messages > in place of ads.) If you run a Squid proxy, there's another way to achieve similar results (without 404 messages). Put these lines in your sqid conf: acl banned_doms url_regex -i "/usr/local/etc/squid/banned_doms.txt" acl banned_urls dstdomain "/usr/local/etc/squid/banned_urls.txt" http_access deny banned_doms http_access deny banned_urls deny_info ERR_BANNED banned_doms deny_info ERR_BANNED banned_doms The file banned_doms.txt contains one domains per line, for example: .doubleclick.net .doubleclick.com .googlesyndication.com .hitbox.com .adserver.org .usertracker.info The dot prefix means to include the domain _and_ all names under that domain, e.g. ".foo.com" includes foo.com itself as well as www.foo.com, www.bar.foo.com and so on. This "dstdomain" matching is very efficient; in the squid ML someone reported having 600,000 entries in his file of banned domains. The file banned_urls.txt contains extended regular expressions (one per line) that are matched against the full URL of the request, for example: ^http://wodas\.wetteroffline\.de/static/sky_(google|woshop) ^http://oas\.hiese\.de/RealMedia/ads/ Finally, the file errors/$LANG/ERR_BANNED contains something like this: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">; <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>Blocked</TITLE> <STYLE type="text/css"><!--BODY{background-color:#ffffff;font-family:verdana,sans-serif}PRE{font-family:sans-serif}--></STYLE> </HEAD><BODY><p><em><font size="-1">(Ad blocked)</font></em></p></BODY> <!-- Thus you will only get a small text "(Ad blocked)" in place of the ads. If you don't even want that, remove the text between "<BODY>" and "</BODY>" completely. The "<!--" line is important because it prevents Squid's signature from being displayed. Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd "Documentation is like sex; when it's good, it's very, very good, and when it's bad, it's better than nothing." -- Dick Brandon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200809101110.m8ABAqwe082446>