Dansguardian Problem with upgrade to 4.4.1

UCS - Univention Corporate Server
#1

It seems dansguardian is no longer checking the groups of a user. It seems to always use the default group.

My default group in dansguardian is configured to only allow a whitelist:
dansguardian/groups/dansguardian_white/banned/sites **
dansguardian/groups/dansguardian_white/exception/sites .Include</etc/dansguardian/white/domains> .Include</etc/dansguardian/BL/updatesites/domains>
dansguardian/groups/dansguardian_white/exception/urls .Include</etc/dansguardian/BL/updatesites/urls>

I just restored to Univention 4.4.0 and there I see in /var/log/dansguardian/access.log the normal behavior. When I browse to google.de I see my name and the group dansguardian_unrestricted.

So I repeated the upgrade to 4.4.1, joined the domain again and rebooted the server. And now I see a deny in the logs. The group is no longer dansguardian_unrestricted but the default group dansguardian_white.

I already followed the steps memberOf:

So I downgraded again to 4.4.0 and stopped the unattended upgrades.

Any idea?

Dansguardian group settings not really working
#2

I have never used Bugzilla. Can you give me a hint where I can find it?

By the way I found 7 lines in syslog all of them like:
dansguardian[4835]: Auth plugin returned error code: -1

I just set up a new proxy server and could reproduce the error. I only configured one additional group and the default group. Only denying one single site in the default group still makes the site inaccesible to members of the other group where this site is not mentioned.

It really seems to be an error. By the way I didn’t get the Auth plugin error this time.

#3

Univention’s bug tracker, Bugzilla, is available at the following URL: https://forge.univention.org/bugzilla/

#4

https://forge.univention.org/bugzilla/show_bug.cgi?id=49947

Mastodon