4 # Where is the access.log file
7 #access_log /usr/local/squid/var/logs/access.log
10 # Use graphics where is possible.
11 # graph_days_bytes_bar_color blue|green|yellow|orange|brown|red
14 #graph_days_bytes_bar_color orange
17 # The full path to the TTF font file to use to create the graphs. It is required
18 # if graphs is set to yes.
20 #graph_font /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf
23 # Especify the title for html page.
25 #title "Squid User Access Reports"
28 # Especify the font for html page.
30 #font_face Tahoma,Verdana,Arial
33 # Especify the header color
35 #header_color darkblue
38 # Especify the header bgcolor
40 #header_bgcolor blanchedalmond
43 # Especify the text font size
47 # TAG: header_font_size
48 # Especify the header font size
52 # TAG: title_font_size
53 # Especify the title font size
57 # TAG: background_color
58 # TAG: background_color
59 # Html page background color
61 # background_color white
64 # Html page text color
69 # Html page text background color
71 #text_bgcolor lavender
74 # Html page title color
84 # Html page logo text.
88 # TAG: logo_text_color
89 # Html page logo texti color.
91 #logo_text_color #000000
93 # TAG: logo_image_size
94 # Html page logo image size.
99 # TAG: background_image
100 # Html page background image
102 #background_image none
105 # User password file used by Squid authentication scheme
106 # If used, generate reports just for that users.
111 # Temporary directory name for work files
117 # The reports will be saved in that directory
120 #output_dir /var/www/html/squid-reports
123 # Email address to send the reports. If you use this tag, no html reports will be generated.
128 # TAG: resolve_ip yes/no
129 # Convert ip address to dns name
133 # TAG: user_ip yes/no
134 # Use Ip Address instead userid in reports.
138 # TAG: topuser_sort_field field normal/reverse
139 # Sort field for the Topuser Report.
140 # Allowed fields: USER CONNECT BYTES TIME
142 #topuser_sort_field BYTES reverse
144 # TAG: user_sort_field field normal/reverse
145 # Sort field for the User Report.
146 # Allowed fields: SITE CONNECT BYTES TIME
148 #user_sort_field BYTES reverse
150 # TAG: exclude_users file
151 # users within the file will be excluded from reports.
152 # you can use indexonly to have only index.html file.
156 # TAG: exclude_hosts file
157 # Hosts, domains or subnets will be excluded from reports.
159 # Eg.: 192.168.10.10 - exclude ip address only
160 # 192.168.10.0/24 - exclude full C class
161 # s1.acme.foo - exclude hostname only
162 # *.acme.foo - exclude full domain name
166 # TAG: useragent_log file
167 # useragent.log file patch to generate useragent report.
172 # Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)
176 # TAG: per_user_limit file MB
177 # Saves userid on file if download exceed n MB.
178 # This option allow you to disable user access if user exceed a download limit.
183 # How many reports files must be keept in reports directory.
184 # The oldest report file will be automatically removed.
189 # TAG: remove_temp_files yes
190 # Remove temporary files: geral, usuarios, top, periodo from root report directory.
192 #remove_temp_files yes
194 # TAG: index yes|no|only
195 # Generate the main index.html.
196 # only - generate only the main index.html
200 # TAG: index_tree date|file
201 # How to generate the index.
206 # The columns to show in the index of the reports
207 # Columns are: dirsize
209 #index_fields dirsize
211 # TAG: overwrite_report yes|no
212 # yes - if report date already exist then will be overwrited.
213 # no - if report date already exist then will be renamed to filename.n, filename.n+1
217 # TAG: records_without_userid ignore|ip|everybody
218 # What can I do with records without user id (no authentication) in access.log file ?
220 # ignore - This record will be ignored.
221 # ip - Use ip address instead. (default)
222 # everybody - Use "everybody" instead.
224 #records_without_userid ip
226 # TAG: use_comma no|yes
227 # Use comma instead point in reports.
228 # Eg.: use_comma yes => 23,450,110
229 # use_comma no => 23.450.110
234 # Mail command to use to send reports via SMTP. Sarg calls it like this:
235 # mail_utility -s "SARG report, date" "output_email" <"mail_content"
237 # Therefore, it is possible to add more arguments to the command by specifying them
240 # If you need too, you can use a shell script to process the content of /dev/stdin
241 # (/dev/stdin is the mail_content passed by sarg to the script) and call whatever
242 # command you like. It is not limited to mailing the report via SMTP.
244 # Don't forget to quote the command if necessary (i.e. if the path contains
245 # characters that must be quoted).
249 # TAG: topsites_num n
250 # How many sites in topsites report.
254 # TAG: topsites_sort_order CONNECT|BYTES|TIME A|D
255 # Sort for topsites report, where A=Ascendent, D=Descendent
257 #topsites_sort_order CONNECT D
259 # TAG: index_sort_order A/D
260 # Sort for index.html, where A=Ascendent, D=Descendent
264 # TAG: exclude_codes file
265 # Ignore records with these codes. Eg.: NONE/400
266 # Write one code per line. Lines starting with a # are ignored.
267 # Only codes matching exactly one of the line is rejected. The
268 # comparison is not case sensitive.
270 #exclude_codes /usr/local/sarg/exclude_codes
272 # TAG: replace_index string
273 # Replace "index.html" in the main index file with this string
274 # If null "index.html" is used
276 #replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?>
278 # TAG: max_elapsed milliseconds
279 # If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.
280 # Use 0 for no checking
282 #max_elapsed 28800000
285 # TAG: report_type type
286 # What kind of reports to generate.
287 # topusers - users, sites, times, bytes, connects, links to accessed sites, etc
288 # topsites - site, connect and bytes report
289 # sites_users - users and sites report
290 # users_sites - accessed sites by the user report
291 # date_time - bytes used per day and hour report
292 # denied - denied sites with full URL report
293 # auth_failures - autentication failures report
294 # site_user_time_date - sites, dates, times and bytes report
295 # downloads - downloads per user report
297 # Eg.: report_type topsites denied
299 #report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads
301 # TAG: usertab filename
302 # You can change the "userid" or the "ip address" to be a real user name on the reports.
303 # If resolve_ip is active, the ip address is resolved before being looked up into this
304 # file. That is, if you want to map the ip address, be sure to set resolv_ip to no or
305 # the resolved name will be looked into the file instead of the ip address. Note that
306 # it can be used to resolve any ip address known to the dns and then map the unresolved
307 # ip addresses to a name found in the usertab file.
309 # userid name or ip address name
311 # SirIsaac Isaac Newton
312 # vinci Leonardo da Vinci
313 # 192.168.10.1 Karol Wojtyla
315 # Each line must be terminated with '\n'
316 # If usertab have value "ldap" (case ignoring), user names
317 # will be taken from LDAP server. This method as approaches for reception
318 # of usernames from Active Didectory
322 # TAG: LDAPHost hostname
323 # FQDN or IP address of host with LDAP service or AD DC
324 # default is '127.0.0.1'
328 # LDAP service port number
332 # TAG: LDAPBindDN CN=username,OU=group,DC=mydomain,DC=com
333 # DN of LDAP user, who is authorized to read user's names from LDAP base
334 # default is empty line
335 #LDAPBindDN cn=proxy,dc=mydomain,dc=local
337 # TAG: LDAPBindPW secret
338 # Password of DN, who is authorized to read user's names from LDAP base
339 # default is empty line
342 # TAG: LDAPBaseSearch OU=users,DC=mydomain,DC=com
344 # default is empty line
345 #LDAPBaseSearch ou=users,dc=mydomain,dc=local
347 # TAG: LDAPFilterSearch (uid=%s)
348 # User search filter by user's logins in LDAP
349 # First founded record will be used
350 # %s - will be changed to userlogins from access.log file
351 # filter string can have up to 5 '%s' tags
352 # default value is '(uid=%s)'
353 #LDAPFilterSearch (uid=%s)
355 # TAG: LDAPTargetAttr attributename
356 # Name of the attribute containing a name of the user
357 # default value is 'cn'
360 # TAG: long_url yes|no
361 # If yes, the full url is showed in report.
362 # If no, only the site will be showed
364 # YES option generate very big sort files and reports.
368 # TAG: date_time_by bytes|elap
369 # Date/Time reports show the downloaded volume or the elapsed time or both.
374 # ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)
375 # graphic character sets for writing in alphabetic languages
376 # You can use the following charsets:
377 # Latin1 - West European
378 # Latin2 - East European
379 # Latin3 - South European
380 # Latin4 - North European
394 # TAG: user_invalid_char "&/"
395 # Records that contain invalid characters in userid will be ignored by Sarg.
397 #user_invalid_char "&/"
399 # TAG: privacy yes|no
400 # privacy_string "***.***.***.***"
401 # privacy_string_color blue
402 # In some countries the sysadm cannot see the visited sites by a restrictive law.
403 # Using privacy yes the visited url will be changes by privacy_string and the link
404 # will be removed from reports.
407 #privacy_string "***.***.***.***"
408 #privacy_string_color blue
410 # TAG: include_users "user1:user2:...:usern"
411 # Reports will be generated only for listed users.
415 # TAG: exclude_string "string1:string2:...:stringn"
416 # Records from access.log file that contain one of listed strings will be ignored.
420 # TAG: show_successful_message yes|no
421 # Shows "Successful report generated on dir" at end of process.
423 #show_successful_message yes
425 # TAG: show_read_statistics yes|no
426 # Shows some reading statistics.
428 #show_read_statistics yes
430 # TAG: topuser_fields
431 # Which fields must be in Topuser report.
433 #topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
435 # TAG: user_report_fields
436 # Which fields must be in User report.
438 #user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
440 # TAG: bytes_in_sites_users_report yes|no
441 # Bytes field must be in Site & Users Report ?
443 #bytes_in_sites_users_report no
446 # How many users in topsites report. 0 = no limit
451 # Save the report results in a file to populate some database
455 # TAG: datafile_delimiter ";"
456 # ascii character to use as a field separator in datafile
458 #datafile_delimiter ";"
460 # TAG: datafile_fields all
461 # Which data fields must be in datafile
462 # user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
464 #datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
466 # TAG: datafile_url ip|name
467 # Saves the URL as ip or name in datafile
472 # The weekdays to take into account ( Sunday->0, Saturday->6 )
479 # The hours to take into account
481 #hours 7-12,14,16,18-20
485 # TAG: dansguardian_conf file
486 # DansGuardian.conf file path
487 # Generate reports from DansGuardian logs.
488 # Use 'none' to disable it.
489 # dansguardian_conf /usr/dansguardian/dansguardian.conf
491 #dansguardian_conf none
493 # TAG: dansguardian_filter_out_date on|off
494 # This option replaces dansguardian_ignore_date whose name was not appropriate with respect to its action.
495 # Note the change of parameter value compared with the old option.
496 # 'off' use the record even if its date is outside of the range found in the input log file.
497 # 'on' use the record only if its date is in the range found in the input log file.
499 #dansguardian_filter_out_date on
501 # TAG: squidguard_conf file
502 # path to squidGuard.conf file
503 # Generate reports from SquidGuard logs.
504 # Use 'none' to disable.
505 # You can use sarg -L filename to use an alternate squidGuard log.
506 # squidguard_conf /usr/local/squidGuard/squidGuard.conf
508 #squidguard_conf none
510 # TAG: redirector_log file
511 # the location of the web proxy redirector log such as one created by squidGuard or Rejik. The option
512 # may be repeated up to 64 times to read multiple files.
513 # If this option is specified, it takes precedence over squidguard_conf.
514 # The command line option -L override this option.
516 #redirector_log /usr/local/squidGuard/var/logs/urls.log
518 # TAG: redirector_filter_out_date on|off
519 # This option replaces squidguard_ignore_date and redirector_ignore_date whose names were not
520 # appropriate with respect to their action.
521 # Note the change of parameter value compared with the old options.
522 # 'off' use the record even if its date is outside of the range found in the input log file.
523 # 'on' use the record only if its date is in the range found in the input log file.
525 #redirector_filter_out_date on
527 # TAG: redirector_log_format
528 # Format string for web proxy redirector logs.
529 # This option was named squidguard_log_format before sarg 2.3.
530 # REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#
531 # SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
532 #redirector_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
534 # TAG: show_sarg_info yes|no
535 # shows sarg information and site path on each report bottom
539 # TAG: show_sarg_logo yes|no
544 # TAG: parsed_output_log directory
545 # Saves the processed log in a sarg format after parsing the squid log file.
546 # This is a way to dump all of the data structures out, after parsing from
547 # the logs (presumably this data will be much smaller than the log files themselves),
548 # and pull them back in for later processing and merging with data from previous logs.
550 #parsed_output_log none
552 # TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress
553 # Command to run to compress sarg parsed output log. It may contain
554 # options (such as -f to overwrite existing target file). The name of
555 # the file to compresse is provided at the end of this
556 # command line. Don't forget to quote things appropriately.
558 #parsed_output_log_compress /bin/gzip
560 # TAG: displayed_values bytes|abbreviation
561 # how the values will be displayed in reports.
562 # eg. bytes - 209.526
563 # abbreviation - 210K
565 #displayed_values bytes
568 # TAG: authfail_report_limit n
569 # TAG: denied_report_limit n
570 # TAG: siteusers_report_limit n
571 # TAG: squidguard_report_limit n
572 # TAG: user_report_limit n
573 # TAG: dansguardian_report_limit n
574 # TAG: download_report_limit n
575 # report limits (lines).
578 #authfail_report_limit 10
579 #denied_report_limit 10
580 #siteusers_report_limit 0
581 #squidguard_report_limit 10
582 #dansguardian_report_limit 10
583 #user_report_limit 10
584 #user_report_limit 50
586 # TAG: www_document_root dir
587 # Where is your Web DocumentRoot
588 # Sarg will create sarg-php directory with some PHP modules:
589 # - sarg-squidguard-block.php - add urls from user reports to squidGuard DB
591 #www_document_root /var/www/html
593 # TAG: block_it module_url
594 # This tag allow you to pass urls from user reports to a cgi or php module,
595 # to be blocked by some Squid acl
597 # Eg.: block_it /sarg-php/sarg-block-it.php
598 # sarg-block-it is a php that will append a url to a flat file.
599 # You must change /var/www/html/sarg-php/sarg-block-it to point to your file
600 # in $filename variable, and chown to a httpd owner.
602 # sarg will pass http://module_url?url=url
606 # TAG: external_css_file path
607 # Provide the path to an external css file to link into the HTML reports instead of
608 # the inline css written by sarg when this option is not set.
610 # In versions prior to 2.3, this used to be an absolute file name to
611 # a file to include verbatim in each HTML page but, as it takes a lot of
612 # space, version 2.3 switched to a link to an external css file.
613 # Therefore, this option must contain the HTTP server path on which a client
614 # browser may find the css file.
616 # Sarg use theses style classes:
618 # .info sarg information class, align=center
619 # .title_c title class, align=center
620 # .header_c header class, align:center
621 # .header_l header class, align:left
622 # .header_r header class, align:right
623 # .text text class, align:right
624 # .data table text class, align:right
625 # .data2 table text class, align:left
626 # .data3 table text class, align:center
629 # Sarg can be instructed to output the internal css it inline
630 # into the reports with this command:
634 # You can redirect the output to a file of your choice and edit
637 #external_css_file none
639 # TAG: user_authentication yes|no
640 # Allow user authentication in User Reports using .htaccess
642 # AuthUserTemplateFile - The template to use to create the
643 # .htaccess file. In the template, %u is replaced by the
644 # user's ID for which the report is generated. The path of the
645 # template is relative to the directory containing sarg
646 # configuration file.
648 # user_authentication no
649 # AuthUserTemplateFile sarg_htaccess
651 # TAG: download_suffix "suffix,suffix,...,suffix"
652 # file suffix to be considered as "download" in Download report.
653 # Use 'none' to disable.
655 #download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"
658 # The maximum number of open file descriptors to avoid "Too many open files" error message.
659 # You need to run sarg as root to use ulimit tag.
660 # If you run sarg with a low privilege user, set to 'none' to disable ulimit
664 # TAG: ntlm_user_format username|domainname+username
667 #ntlm_user_format domainname+username
669 # TAG: realtime_refresh_time num sec
670 # How many time to auto refresh the realtime report
673 # realtime_refresh_time 3
675 # TAG: realtime_access_log_lines num
676 # How many last lines to get from access.log file
678 # realtime_access_log_lines 1000
680 # TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST
681 # Which records must be in realtime report.
683 # realtime_types GET,PUT,CONNECT
685 # TAG: realtime_unauthenticated_records: ignore|show
686 # What to do with unauthenticated records in realtime report.
688 # realtime_unauthenticated_records: show
690 # TAG: byte_cost value no_cost_limit
692 # Eg. byte_cost 0.01 100000000
693 # per byte cost = 0.01
694 # bytes with no cost = 100 Mb
697 # byte_cost 0.01 50000000
699 # TAG: squid24 on|off
700 # Compatilibity with squid version <= 2.4 when using emulate_http_log on
704 # TAG: sorttable path
705 # The path to a javascript script to dynamically sort the tables.
706 # The path is the link a browser must follow to find the script. For instance,
707 # it may be http://www.myproxy.org/sorttable.js or just /sorttable.js if the script
708 # is at the root of your web site.
710 # If the path starts with "../" then it is assumed to be a relative
711 # path and sarg adds as many "../" as necessary to locate the js script from
712 # the output directory. Therefore, ../../sorttable.js links to the javascript
713 # one level above output_dir.
715 # If this entry is set, each sortable table will have the "sortable" class set.
716 # You may have a look at http://www.kryogenix.org/code/browser/sorttable/
717 # for the implementation on which sarg is based.
719 # sorttable /sorttable.js