<html><body><div style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000"><div>/etc/sarg/sarg.conf<br></div><div># sarg.conf<br>#<br># TAG: access_log file<br># Where is the access.log file<br># sarg -l file<br>#<br>#access_log /usr/local/squid/var/logs/access.log<br>access_log /var/log/squid/access.log<br><br># TAG: graphs yes|no<br># Use graphics where is possible.<br># graph_days_bytes_bar_color blue|green|yellow|orange|brown|red<br>#<br>graphs yes<br>graph_days_bytes_bar_color orange<br><br># TAG: graph_font<br># The full path to the TTF font file to use to create the graphs. It is required<br># if graphs is set to yes.<br>#<br>graph_font /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf<br><br># TAG: title<br># Especify the title for html page.<br>#<br>title "Squid User Access Reports"<br><br># TAG: font_face<br># Especify the font for html page.<br>#<br>font_face Tahoma,Verdana,Arial<br><br># TAG: header_color<br># Especify the header color<br>#<br>header_color darkblue<br><br># TAG: header_bgcolor<br># Especify the header bgcolor<br>#<br>header_bgcolor blanchedalmond<br><br># TAG: font_size<br></div><div># Especify the text font size<br>#<br>font_size 12px<br><br># TAG: header_font_size<br># Especify the header font size<br>#<br>header_font_size 12px<br><br># TAG: title_font_size<br># Especify the title font size<br>#<br>title_font_size 11px<br><br># TAG: background_color<br># TAG: background_color<br># Html page background color<br>#<br> background_color white<br><br># TAG: text_color<br># Html page text color<br>#<br>text_color #000000<br><br># TAG: text_bgcolor<br># Html page text background color<br>#<br>#text_bgcolor lavender<br><br># TAG: title_color<br># Html page title color<br>#<br>#title_color green<br><br># TAG: logo_image<br># Html page logo.<br>#<br>#logo_image none<br><br># TAG: logo_text<br># Html page logo text.<br></div><div># width height<br>#<br>#image_size 80 45<br><br># TAG: background_image<br># Html page background image<br>#<br>#background_image none<br><br># TAG: password<br># User password file used by Squid authentication scheme<br># If used, generate reports just for that users.<br>#<br>#password none<br><br># TAG: temporary_dir<br># Temporary directory name for work files<br># sarg -w dir<br>#<br>#temporary_dir /tmp<br><br># TAG: output_dir<br># The reports will be saved in that directory<br># sarg -o dir<br>#<br>output_dir /var/www/html/squid-reports<br>#output_dir /var/www/sarg/ONE-SHOT<br><br># TAG: output_email<br># Email address to send the reports. If you use this tag, no html reports will be generated.<br># sarg -e email<br>#<br>#output_email none<br><br># TAG: resolve_ip yes/no<br># Convert ip address to dns name<br># sarg -n<br>#resolve_ip no<br>resolve_ip yes<br><br># TAG: user_ip yes/no<br># Use Ip Address instead userid in reports.<br># sarg -p<br></div><div>#user_ip no<br><br># TAG: topuser_sort_field field normal/reverse<br># Sort field for the Topuser Report.<br># Allowed fields: USER CONNECT BYTES TIME<br>#<br>#topuser_sort_field BYTES reverse<br><br># TAG: user_sort_field field normal/reverse<br># Sort field for the User Report.<br># Allowed fields: SITE CONNECT BYTES TIME<br>#<br>#user_sort_field BYTES reverse<br><br># TAG: exclude_users file<br># users within the file will be excluded from reports.<br># you can use indexonly to have only index.html file.<br>#<br>#exclude_users none<br><br># TAG: exclude_hosts file<br># Hosts, domains or subnets will be excluded from reports.<br>#<br># Eg.: 192.168.10.10 - exclude ip address only<br># 192.168.10.0/24 - exclude full C class<br># s1.acme.foo - exclude hostname only<br># *.acme.foo - exclude full domain name<br>#<br>#exclude_hosts none<br><br># TAG: useragent_log file<br># useragent.log file patch to generate useragent report.<br>#<br>#useragent_log none<br><br># TAG: date_format<br># Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)<br>#<br>date_format e<br><br># TAG: per_user_limit file MB<br># Saves userid on file if download exceed n MB.<br># This option allow you to disable user access if user exceed a download limit.<br></div><div>#<br>#per_user_limit none<br><br># TAG: lastlog n<br># How many reports files must be keept in reports directory.<br># The oldest report file will be automatically removed.<br># 0 - no limit.<br>#<br>#lastlog 0<br><br># TAG: remove_temp_files yes<br># Remove temporary files: geral, usuarios, top, periodo from root report directory.<br>#<br>#remove_temp_files yes<br><br># TAG: index yes|no|only<br># Generate the main index.html.<br># only - generate only the main index.html<br>#<br>#index yes<br><br># TAG: index_tree date|file<br># How to generate the index.<br>#<br>#index_tree file<br><br># TAG: overwrite_report yes|no<br># yes - if report date already exist then will be overwrited.<br># no - if report date already exist then will be renamed to filename.n, filename.n+1<br>#<br>#overwrite_report no<br><br># TAG: records_without_userid ignore|ip|everybody<br># What can I do with records without user id (no authentication) in access.log file ?<br>#<br># ignore - This record will be ignored.<br># ip - Use ip address instead. (default)<br># everybody - Use "everybody" instead.<br>#<br>#records_without_userid ip<br><br># TAG: use_comma no|yes<br># Use comma instead point in reports.<br></div><div># Eg.: use_comma yes => 23,450,110<br># use_comma no => 23.450.110<br>#<br>#use_comma no<br><br># TAG: mail_utility<br># Mail command to use to send reports via SMTP. Sarg calls it like this:<br># mail_utility -s "SARG report, date" "output_email" <"mail_content"<br>#<br># Therefore, it is possible to add more arguments to the command by specifying them<br># here.<br>#<br># If you need too, you can use a shell script to process the content of /dev/stdin<br># (/dev/stdin is the mail_content passed by sarg to the script) and call whatever<br># command you like. It is not limited to mailing the report via SMTP.<br>#<br># Don't forget to quote the command if necessary (i.e. if the path contains<br># characters that must be quoted).<br>#<br>#mail_utility mailx<br>mail_utility mail<br><br># TAG: topsites_num n<br># How many sites in topsites report.<br>#<br>#topsites_num 100<br><br># TAG: topsites_sort_order CONNECT|BYTES A|D<br># Sort for topsites report, where A=Ascendent, D=Descendent<br>#<br>#topsites_sort_order CONNECT D<br><br># TAG: index_sort_order A/D<br># Sort for index.html, where A=Ascendent, D=Descendent<br>#<br>#index_sort_order D<br><br># TAG: exclude_codes file<br># Ignore records with these codes. Eg.: NONE/400<br># Write one code per line. Lines starting with a # are ignored.<br># Only codes matching exactly one of the line is rejected. The<br># comparison is not case sensitive.<br>#<br></div><div>#exclude_codes /usr/local/sarg/exclude_codes<br><br># TAG: replace_index string<br># Replace "index.html" in the main index file with this string<br># If null "index.html" is used<br>#<br>#replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?><br><br># TAG: max_elapsed milliseconds<br># If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.<br># Use 0 for no checking<br>#<br>#max_elapsed 28800000<br># 8 Hours<br><br># TAG: report_type type<br># What kind of reports to generate.<br># topusers - users, sites, times, bytes, connects, links to accessed sites, etc<br># topsites - site, connect and bytes report<br># sites_users - users and sites report<br># users_sites - accessed sites by the user report<br># date_time - bytes used per day and hour report<br># denied - denied sites with full URL report<br># auth_failures - autentication failures report<br># site_user_time_date - sites, dates, times and bytes report<br># downloads - downloads per user report<br>#<br># Eg.: report_type topsites denied<br>#<br>#report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads<br><br># TAG: usertab filename<br># You can change the "userid" or the "ip address" to be a real user name on the reports.<br># If resolve_ip is active, the ip address is resolved before being looked up into this<br># file. That is, if you want to map the ip address, be sure to set resolv_ip to no or<br># the resolved name will be looked into the file instead of the ip address. Note that<br># it can be used to resolve any ip address known to the dns and then map the unresolved<br># ip addresses to a name found in the usertab file.<br># Table syntax:<br># userid name or ip address name<br># Eg:<br># SirIsaac Isaac Newton<br># vinci Leonardo da Vinci<br></div><div># 192.168.10.1 Karol Wojtyla<br>#<br># Each line must be terminated with '\n'<br># If usertab have value "ldap" (case ignoring), user names<br># will be taken from LDAP server. This method as approaches for reception<br># of usernames from Active Didectory<br>#<br>#usertab none<br><br># TAG: LDAPHost hostname<br># FQDN or IP address of host with LDAP service or AD DC<br># default is '127.0.0.1'<br>#LDAPHost 127.0.0.1<br><br># TAG: LDAPPort port<br># LDAP service port number<br># default is '389'<br>#LDAPPort 389<br><br># TAG: LDAPBindDN CN=username,OU=group,DC=mydomain,DC=com<br># DN of LDAP user, who is authorized to read user's names from LDAP base<br># default is empty line<br>#LDAPBindDN cn=proxy,dc=mydomain,dc=local<br><br># TAG: LDAPBindPW secret<br># Password of DN, who is authorized to read user's names from LDAP base<br># default is empty line<br>#LDAPBindPW secret<br><br># TAG: LDAPBaseSearch OU=users,DC=mydomain,DC=com<br># LDAP search base<br># default is empty line<br>#LDAPBaseSearch ou=users,dc=mydomain,dc=local<br><br># TAG: LDAPFilterSearch (uid=%s)<br># User search filter by user's logins in LDAP<br># First founded record will be used<br># %s - will be changed to userlogins from access.log file<br># filter string can have up to 5 '%s' tags<br># default value is '(uid=%s)'<br>#LDAPFilterSearch (uid=%s)<br><br># TAG: LDAPTargetAttr attributename<br></div><div># Name of the attribute containing a name of the user<br># default value is 'cn'<br>#LDAPTargetAttr cn<br><br># TAG: long_url yes|no<br># If yes, the full url is showed in report.<br># If no, only the site will be showed<br>#<br># YES option generate very big sort files and reports.<br>#<br>#long_url no<br><br># TAG: date_time_by bytes|elap<br># Date/Time reports show the downloaded volume or the elapsed time or both.<br>#<br>#date_time_by bytes<br><br># TAG: charset name<br># ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)<br># graphic character sets for writing in alphabetic languages<br># You can use the following charsets:<br># Latin1 - West European<br># Latin2 - East European<br># Latin3 - South European<br># Latin4 - North European<br># Cyrillic<br># Arabic<br># Greek<br># Hebrew<br># Latin5 - Turkish<br># Latin6<br># Windows-1251<br># Japan<br># Koi8-r<br># UTF-8<br>#<br>charset Latin1<br><br># TAG: user_invalid_char "&/"<br># Records that contain invalid characters in userid will be ignored by Sarg.<br>#<br>#user_invalid_char "&/"<br></div><div><br># TAG: privacy yes|no<br># privacy_string "***.***.***.***"<br># privacy_string_color blue<br># In some countries the sysadm cannot see the visited sites by a restrictive law.<br># Using privacy yes the visited url will be changes by privacy_string and the link<br># will be removed from reports.<br>#<br>#privacy no<br>#privacy_string "***.***.***.***"<br>#privacy_string_color blue<br><br># TAG: include_users "user1:user2:...:usern"<br># Reports will be generated only for listed users.<br>#<br>#include_users none<br><br># TAG: exclude_string "string1:string2:...:stringn"<br># Records from access.log file that contain one of listed strings will be ignored.<br>#<br>#exclude_string none<br><br># TAG: show_successful_message yes|no<br># Shows "Successful report generated on dir" at end of process.<br>#<br>#show_successful_message yes<br>show_successful_message no<br><br># TAG: show_read_statistics yes|no<br># Shows some reading statistics.<br>#<br>#show_read_statistics yes<br><br># TAG: topuser_fields<br># Which fields must be in Topuser report.<br>#<br>#topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE<br><br># TAG: user_report_fields<br># Which fields must be in User report.<br>#<br>#user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE<br></div><div><br># TAG: bytes_in_sites_users_report yes|no<br># Bytes field must be in Site & Users Report ?<br>#<br>#bytes_in_sites_users_report no<br><br># TAG: topuser_num n<br># How many users in topsites report. 0 = no limit<br>#<br>#topuser_num 0<br><br># TAG: datafile file<br># Save the report results in a file to populate some database<br>#<br>#datafile none<br><br># TAG: datafile_delimiter ";"<br># ascii character to use as a field separator in datafile<br>#<br>#datafile_delimiter ";"<br><br># TAG: datafile_fields all<br># Which data fields must be in datafile<br># user;date;time;url;connect;bytes;in_cache;out_cache;elapsed<br>#<br>#datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed<br><br># TAG: datafile_url ip|name<br># Saves the URL as ip or name in datafile<br>#<br>#datafile_url ip<br><br># TAG: weekdays<br># The weekdays to take into account ( Sunday->0, Saturday->6 )<br># Example:<br>#weekdays 1-3,5<br># Default:<br>#weekdays 0-6<br><br># TAG: hours<br># The hours to take into account<br># Example:<br>#hours 7-12,14,16,18-20<br></div><div># Default:<br>#hours 0-23<br><br># TAG: dansguardian_conf file<br># DansGuardian.conf file path<br># Generate reports from DansGuardian logs.<br># Use 'none' to disable it.<br># dansguardian_conf /usr/dansguardian/dansguardian.conf<br>#<br>#dansguardian_conf none<br><br># TAG: dansguardian_filter_out_date on|off<br># This option replaces dansguardian_ignore_date whose name was not appropriate with respect to its action.<br># Note the change of parameter value compared with the old option.<br># 'off' use the record even if its date is outside of the range found in the input log file.<br># 'on' use the record only if its date is in the range found in the input log file.<br>#<br>#dansguardian_filter_out_date on<br><br># TAG: squidguard_conf file<br># path to squidGuard.conf file<br># Generate reports from SquidGuard logs.<br># Use 'none' to disable.<br># You can use sarg -L filename to use an alternate squidGuard log.<br># squidguard_conf /usr/local/squidGuard/squidGuard.conf<br>#<br>#squidguard_conf none<br><br># TAG: redirector_log file<br># the location of the web proxy redirector log such as one created by squidGuard or Rejik. The option<br># may be repeated up to 64 times to read multiple files.<br># If this option is specified, it takes precedence over squidguard_conf.<br># The command line option -L override this option.<br>#<br>#redirector_log /usr/local/squidGuard/var/logs/urls.log<br><br># TAG: redirector_filter_out_date on|off<br># This option replaces squidguard_ignore_date and redirector_ignore_date whose names were not<br># appropriate with respect to their action.<br># Note the change of parameter value compared with the old options.<br># 'off' use the record even if its date is outside of the range found in the input log file.<br># 'on' use the record only if its date is in the range found in the input log file.<br>#<br></div><div>#<br>#redirector_filter_out_date on<br><br># TAG: redirector_log_format<br># Format string for web proxy redirector logs.<br># This option was named squidguard_log_format before sarg 2.3.<br># REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#<br># SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#<br>#redirector_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#<br><br># TAG: show_sarg_info yes|no<br># shows sarg information and site path on each report bottom<br>#<br>#show_sarg_info yes<br><br># TAG: show_sarg_logo yes|no<br># shows sarg logo<br>#<br>#show_sarg_logo yes<br><br># TAG: parsed_output_log directory<br># Saves the processed log in a sarg format after parsing the squid log file.<br># This is a way to dump all of the data structures out, after parsing from<br># the logs (presumably this data will be much smaller than the log files themselves),<br># and pull them back in for later processing and merging with data from previous logs.<br>#<br>#parsed_output_log none<br><br># TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress<br># Command to run to compress sarg parsed output log. It may contain<br># options (such as -f to overwrite existing target file). The name of<br># the file to compresse is provided at the end of this<br># command line. Don't forget to quote things appropriately.<br>#<br>#parsed_output_log_compress /bin/gzip<br><br># TAG: displayed_values bytes|abbreviation<br># how the values will be displayed in reports.<br># eg. bytes - 209.526<br># abbreviation - 210K<br>#<br>#displayed_values bytes<br></div><div><br># Report limits<br># TAG: authfail_report_limit n<br># TAG: denied_report_limit n<br># TAG: siteusers_report_limit n<br># TAG: squidguard_report_limit n<br># TAG: user_report_limit n<br># TAG: dansguardian_report_limit n<br># TAG: download_report_limit n<br># report limits (lines).<br># '0' no limit<br>#<br>#authfail_report_limit 10<br>#denied_report_limit 10<br>#siteusers_report_limit 0<br>#squidguard_report_limit 10<br>#dansguardian_report_limit 10<br>#user_report_limit 10<br>#user_report_limit 50<br><br># TAG: www_document_root dir<br># Where is your Web DocumentRoot<br># Sarg will create sarg-php directory with some PHP modules:<br># - sarg-squidguard-block.php - add urls from user reports to squidGuard DB<br>#<br>#www_document_root /var/www/html<br><br># TAG: block_it module_url<br># This tag allow you to pass urls from user reports to a cgi or php module,<br># to be blocked by some Squid acl<br>#<br># Eg.: block_it /sarg-php/sarg-block-it.php<br># sarg-block-it is a php that will append a url to a flat file.<br># You must change /var/www/html/sarg-php/sarg-block-it to point to your file<br># in $filename variable, and chown to a httpd owner.<br>#<br># sarg will pass http://module_url?url=url<br>#<br>#block_it none<br><br># TAG: external_css_file path<br># Provide the path to an external css file to link into the HTML reports instead of<br># the inline css written by sarg when this option is not set.<br></div><div>#<br># In versions prior to 2.3, this used to be an absolute file name to<br># a file to include verbatim in each HTML page but, as it takes a lot of<br># space, version 2.3 switched to a link to an external css file.<br># Therefore, this option must contain the HTTP server path on which a client<br># browser may find the css file.<br>#<br># Sarg use theses style classes:<br># .logo logo class<br># .info sarg information class, align=center<br># .title_c title class, align=center<br># .header_c header class, align:center<br># .header_l header class, align:left<br># .header_r header class, align:right<br># .text text class, align:right<br># .data table text class, align:right<br># .data2 table text class, align:left<br># .data3 table text class, align:center<br># .link link class<br>#<br># Sarg can be instructed to output the internal css it inline<br># into the reports with this command:<br>#<br># sarg --css<br>#<br># You can redirect the output to a file of your choice and edit<br># it to your liking.<br>#<br>#external_css_file none<br>external_css_file /var/www/sarg/sarg.css<br><br># TAG: user_authentication yes|no<br># Allow user authentication in User Reports using .htaccess<br># Parameters:<br># AuthUserTemplateFile - The template to use to create the<br># .htaccess file. In the template, %u is replaced by the<br># user's ID for which the report is generated. The path of the<br># template is relative to the directory containing sarg<br># configuration file.<br>#<br># user_authentication no<br># AuthUserTemplateFile sarg_htaccess<br></div><div><br># TAG: download_suffix "suffix,suffix,...,suffix"<br># file suffix to be considered as "download" in Download report.<br># Use 'none' to disable.<br>#<br>download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"<br><br># TAG: ulimit n<br># The maximum number of open file descriptors to avoid "Too many open files" error message.<br># You need to run sarg as root to use ulimit tag.<br># If you run sarg with a low privilege user, set to 'none' to disable ulimit<br>#<br>#ulimit 20000<br><br># TAG: ntlm_user_format username|domainname+username<br># NTLM users format.<br>#<br>#ntlm_user_format domainname+username<br><br># TAG: realtime_refresh_time num sec<br># How many time to auto refresh the realtime report<br># 0 = disable<br>#<br># realtime_refresh_time 3<br><br># TAG: realtime_access_log_lines num<br># How many last lines to get from access.log file<br>#<br># realtime_access_log_lines 1000<br><br># TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST<br># Which records must be in realtime report.<br>#<br># realtime_types GET,PUT,CONNECT<br><br># TAG: realtime_unauthenticated_records: ignore|show<br># What to do with unauthenticated records in realtime report.<br>#<br># realtime_unauthenticated_records: show<br><br># TAG: byte_cost value no_cost_limit<br># Cost per byte.<br># Eg. byte_cost 0.01 100000000<br></div><div># per byte cost = 0.01<br># bytes with no cost = 100 Mb<br># 0 = disable<br>#<br># byte_cost 0.01 50000000<br><br># TAG: squid24 on|off<br># Compatilibity with squid version <= 2.4 when using emulate_http_log on<br>#<br># squid24 off<br></div><div><br data-mce-bogus="1"></div><div>/usr/local/etc/sarg.conf</div><div># sarg.conf<br>#<br># TAG: access_log file<br># Where is the access.log file<br># sarg -l file<br>#<br>access_log /var/log/squid/access.log<br><br># TAG: graphs yes|no<br># Use graphics where is possible.<br># graph_days_bytes_bar_color blue|green|yellow|orange|brown|red<br>#<br>graphs yes<br>graph_days_bytes_bar_color orange<br><br># TAG: graph_font<br># The full path to the TTF font file to use to create the graphs. It is required<br># if graphs is set to yes.<br>#<br>#graph_font /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf<br><br># TAG: title<br># Especify the title for html page.<br>#<br>#title "Squid User Access Reports"<br>title "RELATORIOS DE ACESSO A INTERNET - SARG"<br><br># TAG: font_face<br># Especify the font for html page.<br>#<br>#font_face Tahoma,Verdana,Arial<br>font_face Arial<br><br># TAG: header_color<br># Especify the header color<br>#<br>#header_color darkblue<br><br># TAG: header_bgcolor<br># Especify the header bgcolor<br>#<br>#header_bgcolor blanchedalmond<br></div><div><br># TAG: font_size<br>font_size 12px<br># Especify the text font size<br>#<br>#font_size 9px<br><br># TAG: header_font_size<br># Especify the header font size<br>#<br>#header_font_size 9px<br><br># TAG: title_font_size<br># Especify the title font size<br>#<br>#title_font_size 11px<br><br># TAG: background_color<br># TAG: background_color<br># Html page background color<br>#<br># background_color white<br><br># TAG: text_color<br># Html page text color<br>#<br>#text_color #000000<br><br># TAG: text_bgcolor<br># Html page text background color<br>#<br>#text_bgcolor lavender<br><br># TAG: title_color<br># Html page title color<br>#<br>#title_color green<br><br># TAG: logo_image<br># Html page logo.<br>#<br>#logo_image none<br></div><div><br># TAG: logo_text<br># Html page logo text.<br>#<br>#logo_text ""<br><br># TAG: logo_text_color<br># Html page logo texti color.<br>#<br>#logo_text_color #000000<br><br># TAG: logo_image_size<br># Html page logo image size.<br># width height<br>#<br>#image_size 80 45<br><br># TAG: background_image<br># Html page background image<br>#<br>#background_image none<br><br># TAG: password<br># User password file used by Squid authentication scheme<br># If used, generate reports just for that users.<br>#<br>#password none<br>password /var/www/html/squid-reports/.htpasswd<br><br># TAG: temporary_dir<br># Temporary directory name for work files<br># sarg -w dir<br>#<br>#temporary_dir /tmp<br><br># TAG: output_dir<br># The reports will be saved in that directory<br># sarg -o dir<br>#<br>output_dir /var/www/html/squid-reports<br><br># TAG: anonymous_output_files yes/no<br># Use anonymous file and directory names in the report. If it is set to<br></div><div># no (the default), the user id/ip/name is slightly mangled to create a<br># suitable file name to store the report of the user but the user's<br># identity can easily be guessed from the mangled name. If this option is<br># set, any file or directory belonging to the user is replaced by a short<br># number. The purpose is to hide the identity of the user when looking<br># at the report file names but it may serve to shorten the path too.<br>#<br>#anonymous_output_files no<br><br># TAG: output_email<br># Email address to send the reports. If you use this tag, no html reports will be generated.<br># sarg -e email<br>#<br>#output_email none<br><br># TAG: resolve_ip modulelist<br># List the modules to use to convert IP addresses into names.<br># Each named module is tried in sequence until one returns a result. Therefore<br># the order of the modules is relevant.<br># The modules must be listed on one line each separated from the previous one with<br># a space.<br>#<br># The possible modules are<br># dns Use the DNS.<br># exec Call an external program with the IP address as argument.<br>#<br># For compatibility with previous versions, yes is a synonymous for dns and<br># no does nothing.<br># sarg -n forces the use of the dns module.<br>#resolve_ip no<br><br># TAG: resolve_ip_exec command<br># If resolve_ip selects the exec module, this is the command to run to<br># resolve an IP address. The command must contain a placeholder where the<br># IP address is inserted. The placeholder must be %IP in uppercases. The<br># placeholder may be repeated multiple times if necessary.<br>#<br># The command is expected to return the host name without frills on its<br># standard output. If the command returns nothing, it is assumed that the<br># command could not resolve the IP address and the next module in the<br># chain is given a try with the same address.<br>#<br># This option can only be used once. Therefore there is only one command<br></div><div># available to resolve an IP address but the program can do anything it<br># deems fit including attempting several strategies.<br>#<br># Beware that running an external program is exceedingly slow. So you<br># should try the DNS first and only call an external program if the DNS<br># fails.<br>#resolve_ip_exec nmblookup -A %IP | sed -n -e 's/^ *\(.*\) *<00> - *B.*/\1/p'<br><br># TAG: user_ip yes/no<br># Use Ip Address instead userid in reports.<br># sarg -p<br>#user_ip no<br><br># TAG: topuser_sort_field field normal/reverse<br># Sort field for the Topuser Report.<br># Allowed fields: USER CONNECT BYTES TIME<br>#<br>#topuser_sort_field BYTES reverse<br><br># TAG: user_sort_field field normal/reverse<br># Sort field for the User Report.<br># Allowed fields: SITE CONNECT BYTES TIME<br>#<br>#user_sort_field BYTES reverse<br><br># TAG: exclude_users file<br># users within the file will be excluded from reports.<br># you can use indexonly to have only index.html file.<br>#<br>#exclude_users none<br><br># TAG: exclude_hosts file<br># Hosts, domains or subnets will be excluded from reports.<br>#<br># Eg.: 192.168.10.10 - exclude ip address only<br># 192.168.10.0/24 - exclude full C class<br># s1.acme.foo - exclude hostname only<br># *.acme.foo - exclude full domain name<br>#<br>#exclude_hosts none<br><br># TAG: useragent_log file<br># useragent.log file patch to generate useragent report.<br></div><div>#<br>#useragent_log none<br><br># TAG: date_format<br># Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)<br>#<br>#date_format u<br><br># TAG: per_user_limit file MB<br># Saves userid on file if download exceed n MB.<br># This option allow you to disable user access if user exceed a download limit.<br>#<br>#per_user_limit none<br><br># TAG: lastlog n<br># How many reports files must be keept in reports directory.<br># The oldest report file will be automatically removed.<br># 0 - no limit.<br>#<br>#lastlog 0<br><br># TAG: remove_temp_files yes<br># Remove temporary files: geral, usuarios, top, periodo from root report directory.<br>#<br>#remove_temp_files yes<br><br># TAG: index yes|no|only<br># Generate the main index.html.<br># only - generate only the main index.html<br>#<br>#index yes<br><br># TAG: index_tree date|file<br># How to generate the index.<br>#<br>#index_tree file<br><br># TAG: index_fields<br># The columns to show in the index of the reports<br># Columns are: dirsize<br>#<br>#index_fields dirsize<br></div><div><br># TAG: overwrite_report yes|no<br># yes - if report date already exist then will be overwrited.<br># no - if report date already exist then will be renamed to filename.n, filename.n+1<br>#<br>#overwrite_report no<br><br># TAG: records_without_userid ignore|ip|everybody<br># What can I do with records without user id (no authentication) in access.log file ?<br>#<br># ignore - This record will be ignored.<br># ip - Use ip address instead. (default)<br># everybody - Use "everybody" instead.<br>#<br>#records_without_userid ip<br><br># TAG: use_comma no|yes<br># Use comma instead point in reports.<br># Eg.: use_comma yes => 23,450,110<br># use_comma no => 23.450.110<br>#<br>#use_comma no<br><br># TAG: mail_utility<br># Mail command to use to send reports via SMTP. Sarg calls it like this:<br># mail_utility -s "SARG report, date" "output_email" <"mail_content"<br>#<br># Therefore, it is possible to add more arguments to the command by specifying them<br># here.<br>#<br># If you need too, you can use a shell script to process the content of /dev/stdin<br># (/dev/stdin is the mail_content passed by sarg to the script) and call whatever<br># command you like. It is not limited to mailing the report via SMTP.<br>#<br># Don't forget to quote the command if necessary (i.e. if the path contains<br># characters that must be quoted).<br>#<br>#mail_utility mailx<br><br># TAG: topsites_num n<br># How many sites in topsites report.<br>#<br>#topsites_num 100<br></div><div><br># TAG: topsites_sort_order CONNECT|BYTES|TIME|USER A|D<br># Sort for topsites report, where A=Ascendent, D=Descendent<br>#<br>#topsites_sort_order CONNECT D<br><br># TAG: index_sort_order A/D<br># Sort for index.html, where A=Ascendent, D=Descendent<br>#<br>#index_sort_order D<br><br># TAG: exclude_codes file<br># Ignore records with these codes. Eg.: NONE/400<br># Write one code per line. Lines starting with a # are ignored.<br># Only codes matching exactly one of the line is rejected. The<br># comparison is not case sensitive.<br>#<br>#exclude_codes /usr/local/sarg/exclude_codes<br><br># TAG: replace_index string<br># Replace "index.html" in the main index file with this string<br># If null "index.html" is used<br>#<br>#replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?><br><br># TAG: max_elapsed milliseconds<br># If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.<br># Use 0 for no checking<br>#<br>#max_elapsed 28800000<br># 8 Hours<br><br># TAG: report_type type<br># What kind of reports to generate.<br># topusers - users, sites, times, bytes, connects, links to accessed sites, etc<br># topsites - site, connect and bytes report<br># sites_users - users and sites report<br># users_sites - accessed sites by the user report<br># date_time - bytes used per day and hour report<br># denied - denied sites with full URL report<br># auth_failures - autentication failures report<br># site_user_time_date - sites, dates, times and bytes report<br># downloads - downloads per user report<br></div><div>#<br># Eg.: report_type topsites denied<br>#<br>#report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads<br><br># TAG: usertab filename<br># You can change the "userid" or the "ip address" to be a real user name on the reports.<br># If resolve_ip is active, the ip address is resolved before being looked up into this<br># file. That is, if you want to map the ip address, be sure to set resolv_ip to no or<br># the resolved name will be looked into the file instead of the ip address. Note that<br># it can be used to resolve any ip address known to the dns and then map the unresolved<br># ip addresses to a name found in the usertab file.<br># Table syntax:<br># userid name or ip address name<br># Eg:<br># SirIsaac Isaac Newton<br># vinci Leonardo da Vinci<br># 192.168.10.1 Karol Wojtyla<br>#<br># Each line must be terminated with '\n'<br># If usertab have value "ldap" (case ignoring), user names<br># will be taken from LDAP server. This method as approaches for reception<br># of usernames from Active Didectory<br>#<br>#usertab none<br><br># TAG: LDAPHost hostname<br># FQDN or IP address of host with LDAP service or AD DC<br># default is '127.0.0.1'<br>#LDAPHost 127.0.0.1<br><br># TAG: LDAPPort port<br># LDAP service port number<br># default is '389'<br>#LDAPPort 389<br><br># TAG: LDAPBindDN CN=username,OU=group,DC=mydomain,DC=com<br># DN of LDAP user, who is authorized to read user's names from LDAP base<br># default is empty line<br>#LDAPBindDN cn=proxy,dc=mydomain,dc=local<br><br># TAG: LDAPBindPW secret<br># Password of DN, who is authorized to read user's names from LDAP base<br></div><div># default is empty line<br>#LDAPBindPW secret<br><br># TAG: LDAPBaseSearch OU=users,DC=mydomain,DC=com<br># LDAP search base<br># default is empty line<br>#LDAPBaseSearch ou=users,dc=mydomain,dc=local<br><br># TAG: LDAPFilterSearch (uid=%s)<br># User search filter by user's logins in LDAP<br># First founded record will be used<br># %s - will be changed to userlogins from access.log file<br># filter string can have up to 5 '%s' tags<br># default value is '(uid=%s)'<br>#LDAPFilterSearch (uid=%s)<br><br># TAG: LDAPTargetAttr attributename<br># Name of the attribute containing a name of the user<br># default value is 'cn'<br>#LDAPTargetAttr cn<br><br># TAG: long_url yes|no<br># If yes, the full url is showed in report.<br># If no, only the site will be showed<br>#<br># YES option generate very big sort files and reports.<br>#<br>#long_url no<br><br># TAG: date_time_by bytes|elap<br># Date/Time reports show the downloaded volume or the elapsed time or both.<br>#<br>#date_time_by bytes<br><br># TAG: charset name<br># ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)<br># graphic character sets for writing in alphabetic languages<br># You can use the following charsets:<br># Latin1 - West European<br># Latin2 - East European<br># Latin3 - South European<br># Latin4 - North European<br># Cyrillic<br></div><div># Arabic<br># Greek<br># Hebrew<br># Latin5 - Turkish<br># Latin6<br># Windows-1251<br># Japan<br># Koi8-r<br># UTF-8<br>#<br>#charset Latin1<br><br># TAG: user_invalid_char "&/"<br># Records that contain invalid characters in userid will be ignored by Sarg.<br>#<br>#user_invalid_char "&/"<br><br># TAG: privacy yes|no<br># privacy_string "***.***.***.***"<br># privacy_string_color blue<br># In some countries the sysadm cannot see the visited sites by a restrictive law.<br># Using privacy yes the visited url will be changes by privacy_string and the link<br># will be removed from reports.<br>#<br>#privacy no<br>#privacy_string "***.***.***.***"<br>#privacy_string_color blue<br><br># TAG: include_users "user1:user2:...:usern"<br># Reports will be generated only for listed users.<br>#<br>#include_users none<br><br># TAG: exclude_string "string1:string2:...:stringn"<br># Records from access.log file that contain one of listed strings will be ignored.<br>#<br>#exclude_string none<br><br># TAG: show_successful_message yes|no<br># Shows "Successful report generated on dir" at end of process.<br>#<br>#show_successful_message yes<br></div><div><br># TAG: show_read_statistics yes|no<br># Shows some reading statistics.<br>#<br>#show_read_statistics yes<br><br># TAG: topuser_fields<br># Which fields must be in Topuser report.<br>#<br>#topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE<br><br># TAG: user_report_fields<br># Which fields must be in User report.<br>#<br>#user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE<br><br># TAG: bytes_in_sites_users_report yes|no<br># Bytes field must be in Site & Users Report ?<br>#<br>#bytes_in_sites_users_report no<br><br># TAG: topuser_num n<br># How many users in topsites report. 0 = no limit<br>#<br>#topuser_num 0<br><br># TAG: datafile file<br># Save the report results in a file to populate some database<br>#<br>#datafile none<br><br># TAG: datafile_delimiter ";"<br># ascii character to use as a field separator in datafile<br>#<br>#datafile_delimiter ";"<br><br># TAG: datafile_fields all<br># Which data fields must be in datafile<br># user;date;time;url;connect;bytes;in_cache;out_cache;elapsed<br>#<br>#datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed<br><br># TAG: datafile_url ip|name<br></div><div># Saves the URL as ip or name in datafile<br>#<br>#datafile_url ip<br><br># TAG: weekdays<br># The weekdays to take into account ( Sunday->0, Saturday->6 )<br># Example:<br>#weekdays 1-3,5<br># Default:<br>#weekdays 0-6<br><br># TAG: hours<br># The hours to take into account<br># Example:<br>#hours 7-12,14,16,18-20<br># Default:<br>#hours 0-23<br><br># TAG: dansguardian_conf file<br># DansGuardian.conf file path<br># Generate reports from DansGuardian logs.<br># Use 'none' to disable it.<br># dansguardian_conf /usr/dansguardian/dansguardian.conf<br>#<br>#dansguardian_conf none<br><br># TAG: dansguardian_filter_out_date on|off<br># This option replaces dansguardian_ignore_date whose name was not appropriate with respect to its action.<br># Note the change of parameter value compared with the old option.<br># 'off' use the record even if its date is outside of the range found in the input log file.<br># 'on' use the record only if its date is in the range found in the input log file.<br>#<br>#dansguardian_filter_out_date on<br><br># TAG: squidguard_conf file<br># path to squidGuard.conf file<br># Generate reports from SquidGuard logs.<br># Use 'none' to disable.<br># You can use sarg -L filename to use an alternate squidGuard log.<br># squidguard_conf /usr/local/squidGuard/squidGuard.conf<br>#<br>#squidguard_conf none<br></div><div><br># TAG: redirector_log file<br># the location of the web proxy redirector log such as one created by squidGuard or Rejik. The option<br># may be repeated up to 64 times to read multiple files.<br># If this option is specified, it takes precedence over squidguard_conf.<br># The command line option -L override this option.<br>#<br>#redirector_log /usr/local/squidGuard/var/logs/urls.log<br><br># TAG: redirector_filter_out_date on|off<br># This option replaces squidguard_ignore_date and redirector_ignore_date whose names were not<br># appropriate with respect to their action.<br># Note the change of parameter value compared with the old options.<br># 'off' use the record even if its date is outside of the range found in the input log file.<br># 'on' use the record only if its date is in the range found in the input log file.<br>#<br>#redirector_filter_out_date on<br><br># TAG: redirector_log_format<br># Format string for web proxy redirector logs.<br># This option was named squidguard_log_format before sarg 2.3.<br># REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#<br># SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp# #url# #ip#/#tmp# #user# #end#<br>#redirector_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp# #url# #ip#/#tmp# #user# #end#<br><br># TAG: show_sarg_info yes|no<br># shows sarg information and site path on each report bottom<br>#<br>#show_sarg_info yes<br><br># TAG: show_sarg_logo yes|no<br># shows sarg logo<br>#<br>#show_sarg_logo yes<br><br># TAG: parsed_output_log directory<br># Saves the processed log in a sarg format after parsing the squid log file.<br># This is a way to dump all of the data structures out, after parsing from<br># the logs (presumably this data will be much smaller than the log files themselves),<br># and pull them back in for later processing and merging with data from previous logs.<br>#<br>#parsed_output_log none<br></div><div><br># TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress<br># Command to run to compress sarg parsed output log. It may contain<br># options (such as -f to overwrite existing target file). The name of<br># the file to compresse is provided at the end of this<br># command line. Don't forget to quote things appropriately.<br>#<br>#parsed_output_log_compress /bin/gzip<br><br># TAG: displayed_values bytes|abbreviation<br># how the values will be displayed in reports.<br># eg. bytes - 209.526<br># abbreviation - 210K<br>#<br>#displayed_values bytes<br><br># Report limits<br># TAG: authfail_report_limit n<br># TAG: denied_report_limit n<br># TAG: siteusers_report_limit n<br># TAG: squidguard_report_limit n<br># TAG: user_report_limit n<br># TAG: dansguardian_report_limit n<br># TAG: download_report_limit n<br># report limits (lines).<br># '0' no limit<br>#<br>#authfail_report_limit 10<br>#denied_report_limit 10<br>#siteusers_report_limit 0<br>#squidguard_report_limit 10<br>#dansguardian_report_limit 10<br>#user_report_limit 10<br>#user_report_limit 50<br><br># TAG: www_document_root dir<br># Where is your Web DocumentRoot<br># Sarg will create sarg-php directory with some PHP modules:<br># - sarg-squidguard-block.php - add urls from user reports to squidGuard DB<br>#<br>#www_document_root /var/www/html<br><br># TAG: block_it module_url<br></div><div># This tag allow you to pass urls from user reports to a cgi or php module,<br># to be blocked by some Squid acl<br>#<br># Eg.: block_it /sarg-php/sarg-block-it.php<br># sarg-block-it is a php that will append a url to a flat file.<br># You must change /var/www/html/sarg-php/sarg-block-it to point to your file<br># in $filename variable, and chown to a httpd owner.<br>#<br># sarg will pass http://module_url?url=url<br>#<br>#block_it none<br><br># TAG: external_css_file path<br># Provide the path to an external css file to link into the HTML reports instead of<br># the inline css written by sarg when this option is not set.<br>#<br># In versions prior to 2.3, this used to be an absolute file name to<br># a file to include verbatim in each HTML page but, as it takes a lot of<br># space, version 2.3 switched to a link to an external css file.<br># Therefore, this option must contain the HTTP server path on which a client<br># browser may find the css file.<br>#<br># Sarg use theses style classes:<br># .logo logo class<br># .info sarg information class, align=center<br># .title_c title class, align=center<br># .header_c header class, align:center<br># .header_l header class, align:left<br># .header_r header class, align:right<br># .text text class, align:right<br># .data table text class, align:right<br># .data2 table text class, align:left<br># .data3 table text class, align:center<br># .link link class<br>#<br># Sarg can be instructed to output the internal css it inline<br># into the reports with this command:<br>#<br># sarg --css<br>#<br># You can redirect the output to a file of your choice and edit<br># it to your liking.<br>#<br></div><div>#<br>#external_css_file none<br><br># TAG: user_authentication yes|no<br># Allow user authentication in User Reports using .htaccess<br># Parameters:<br># AuthUserTemplateFile - The template to use to create the<br># .htaccess file. In the template, %u is replaced by the<br># user's ID for which the report is generated. The path of the<br># template is relative to the directory containing sarg<br># configuration file.<br>#<br># user_authentication no<br># AuthUserTemplateFile sarg_htaccess<br><br># TAG: download_suffix "suffix,suffix,...,suffix"<br># file suffix to be considered as "download" in Download report.<br># Use 'none' to disable.<br>#<br>#download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"<br><br># TAG: ulimit n<br># The maximum number of open file descriptors to avoid "Too many open files" error message.<br># You need to run sarg as root to use ulimit tag.<br># If you run sarg with a low privilege user, set to 'none' to disable ulimit<br>#<br>#ulimit 20000<br><br># TAG: ntlm_user_format user|domainname+username<br># NTLM users format.<br>#<br>#ntlm_user_format domainname+username<br><br># TAG: realtime_refresh_time num sec<br># How many time to auto refresh the realtime report<br># 0 = disable<br>#<br># realtime_refresh_time 3<br><br># TAG: realtime_access_log_lines num<br># How many last lines to get from access.log file<br>#<br># realtime_access_log_lines 1000<br></div><div><br># TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST<br># Which records must be in realtime report.<br>#<br># realtime_types GET,PUT,CONNECT<br><br># TAG: realtime_unauthenticated_records: ignore|show<br># What to do with unauthenticated records in realtime report.<br>#<br># realtime_unauthenticated_records: show<br><br># TAG: byte_cost value no_cost_limit<br># Cost per byte.<br># Eg. byte_cost 0.01 100000000<br># per byte cost = 0.01<br># bytes with no cost = 100 Mb<br># 0 = disable<br>#<br># byte_cost 0.01 50000000<br><br># TAG: squid24 on|off<br># Compatilibity with squid version <= 2.4 when using emulate_http_log on<br>#<br># squid24 off<br><br># TAG: sorttable path<br># The path to a javascript script to dynamically sort the tables.<br># The path is the link a browser must follow to find the script. For instance,<br># it may be http://www.myproxy.org/sorttable.js or just /sorttable.js if the script<br># is at the root of your web site.<br>#<br># If the path starts with "../" then it is assumed to be a relative<br># path and sarg adds as many "../" as necessary to locate the js script from<br># the output directory. Therefore, ../../sorttable.js links to the javascript<br># one level above output_dir.<br>#<br># If this entry is set, each sortable table will have the "sortable" class set.<br># You may have a look at http://www.kryogenix.org/code/browser/sorttable/<br># for the implementation on which sarg is based.<br>#<br># sorttable /sorttable.js<br><br># TAG: hostalias<br></div><div># The name of a text file containing the host names one per line and the<br># optional alias to use in the report instead of that host name.<br># Host names may contain up to one wildcard denoted by a *. The wildcard<br># must not end the host name.<br># The host name may be followed by an optional alias but if no alias is<br># provided, the host name, including the wildcard, replaces any matching<br># host name found in the log.<br># Host names replaced by identical aliases are grouped together in the<br># reports.<br># IP addresses are supported and accept the CIDR notation both for IPv4 and<br># IPv6 addresses.<br># Regular expressions can also be used if sarg was compiled with libpcre.<br># A regular expression is formated as re:/regexp/ alias<br># The regexp is a perl regular expression (see man perlre).<br># Subpatterns are allowed in the alias. Sarg recognizes sed (\1) or perl ($1)<br># subpatterns. Only 9 subpatterns are allowed in the replacement string.<br>#<br># Example:<br># *.gstatic.com<br># mt*.google.com<br># *.myphone.microsoft.com<br># *.myphone.microsoft.com:443 *.myphone.microsoft.com:secure<br># *.freeav.net antivirus:freeav<br># *.mail.live.com<br># 65.52.00.00/14 *.mail.live.com<br># re:/\.dropbox\.com(:443)?/ dropbox<br># re:/([\w-]+)\.(\w*[a-zA-Z]\w*)(?::\d+)?$/\1.\2<br>#hostalias /usr/local/sarg/hostalias<br><br># TAG: keep_temp_log yes|no<br># Keep temporary files created by sarg to produce its reports. The normal<br># operation mode is to delete those files when they are not necessary any more.<br>#<br># Never leave that option to "yes" for normal operation as temporary files<br># left over by previous run can be included in subsequent reports.<br>#<br># Use this option only to diagnose a problem with your reports. A better<br># alternative is to run sarg from the command line with optino -k.<br>#keep_temp_log no<br></div><div><br data-mce-bogus="1"></div><div>[root@proxy ~]# sarg<br>SARG: Registros no arquivo: 200787, lendo: 100,00%<br>SARG: Nenhum registro encontrado<br>SARG: Fim<br>[root@proxy ~]# time<br><br>real 0m0.000s<br>user 0m0.000s<br>sys 0m0.000s<br>[root@proxy ~]# date<br>Qui Set 29 09:34:40 BRT 2016<br>[root@proxy ~]# vim /etc/sarg/sarg.conf<br>[root@proxy ~]# cd /<br>[root@proxy /]# find . -name sarg.conf -print<br>./usr/local/etc/sarg.conf<br>./etc/sarg/sarg.conf<br>[root@proxy /]# vim /usr/local/etc/sarg.conf</div><div><br></div><hr id="zwchr" data-marker="__DIVIDER__"><div data-marker="__HEADERS__"><b>De: </b>centos-pt-br-request@centos.org<br><b>Para: </b>centos-pt-br@centos.org<br><b>Enviadas: </b>Quinta-feira, 29 de setembro de 2016 9:00:01<br><b>Assunto: </b>Digest CentOS-pt-br, volume 114, assunto 7<br></div><div><br></div><div data-marker="__QUOTED_TEXT__">Enviar submissões para a lista de discussão CentOS-pt-br para <br> centos-pt-br@centos.org<br><br>Para se cadastrar ou descadastrar via WWW, visite o endereço<br> https://lists.centos.org/mailman/listinfo/centos-pt-br<br>ou, via email, envie uma mensagem com a palavra 'help' no assunto ou<br>corpo da mensagem para <br> centos-pt-br-request@centos.org<br><br>Você poderá entrar em contato com a pessoa que gerencia a lista pelo<br>endereço<br> centos-pt-br-owner@centos.org<br><br>Quando responder, por favor edite sua linha Assunto assim ela será<br>mais específica que "Re: Contents of CentOS-pt-br digest..."<br><br><br>Tópicos de Hoje:<br><br> 1. Sarg! (Glenio Cortes Himmen)<br> 2. Auto-Re: Sarg! (=?GBK?B?va3D9w==?=)<br> 3. Re: Sarg! (Vitor Lobo)<br><br><br>----------------------------------------------------------------------<br><br>Message: 1<br>Date: Wed, 28 Sep 2016 15:15:28 -0300 (BRT)<br>From: Glenio Cortes Himmen <glenio.11622x@aparecida.go.gov.br><br>To: centos-pt-br@centos.org<br>Subject: [CentOS-pt-br] Sarg!<br>Message-ID:<br> <536860194.486985.1475086528075.JavaMail.zimbra@aparecida.go.gov.br><br>Content-Type: text/plain; charset="utf-8"<br><br>Senhores, <br><br>Estou tendo problemas com o Sarg. <br><br>Ele não está lendo os novos registros. <br><br>Abaixo as mensagens. <br><br>SARG: Registros no arquivo: 181872, lendo: 100,00% <br>SARG: Nenhum registro encontrado <br>SARG: Fim <br><br>SARG: Registros no arquivo: 181383, lendo: 100,00% <br>SARG: Nenhum registro encontrado <br>SARG: Fim <br><br>ARQUIVO/PERÍODO DATA DE CRIAÇÃO USUÁRIOS BYTES MÉDIA <br>2016Sep19-2016Sep22 Qui 22 Set 2016 13:38:38 BRT 1 351.57M 351.57M <br>2016Sep18-2016Sep22 Qui 22 Set 2016 10:06:54 BRT 28 4.43G 158.30M <br>2015Mar23-2015Mar27 Sex 27 Mar 2015 10:49:56 BRT 52 13.89G 267.25M <br>2015Mar08-2015Mar10 Ter 10 Mar 2015 16:34:32 BRT 47 3.90G 83.14M <br>2015Mar01-2015Mar05 Qui 05 Mar 2015 10:28:29 BRT 57 5.53G 97.05M <br>2015Feb23-2015Feb27 Sex 27 Fev 2015 08:41:04 BRT 62 5.11G 82.57M <br>2015Feb23-2015Feb26 Qui 26 Fev 2015 09:18:22 BRT 55 3.21G 58.42M <br>2015Feb23-2015Feb23 Seg 23 Fev 2015 17:08:32 BRT 49 1.78G 36.42M <br>2015Feb15-2015Feb20 Sex 20 Fev 2015 16:37:56 BRST 47 6.18G 131.69M <br>23Mar2015-27Mar2015 Sex 27 Mar 2015 10:49:08 BRT 52 13.87G 266.85M <br><br>Como vocês podem ver, a leitura feita em dois horários diferentes mostra que o arquivo contem mais dados, mas na hora de gerar o relatório, ele fala que não tem novidades. <br><br>Alguma dica? <br><br>CentOS release 6.8 (Final) <br>Gerado por sarg-2.3.8 Feb-07-2014 em Set/22/2016 13:38 <br><br>Glênio Côrtes Himmen <br>SMTA - Sup. Municipal de Trânsito de Aparecida <br>glenio.11622x@aparecida.go.gov.br <br>-------------- Próxima Parte ----------<br>Um anexo em HTML foi limpo...<br>URL: <http://lists.centos.org/pipermail/centos-pt-br/attachments/20160928/aff83cc2/attachment-0001.html><br><br>------------------------------<br><br>Message: 2<br>Date: Thu, 29 Sep 2016 02:11:14 +0800<br>From: "=?GBK?B?va3D9w==?=" <kjjm@ahpu.edu.cn><br>To: centos-pt-br@centos.org<br>Subject: [CentOS-pt-br] Auto-Re: Sarg!<br>Message-ID: <1609290211145e0d7e2a6e07b47bb0904b829ab9eeab@ahpu.edu.cn><br>Content-Type: text/plain; charset="GBK"<br><br>????<br><br>------------------------------<br><br>Message: 3<br>Date: Thu, 29 Sep 2016 07:39:04 -0300<br>From: Vitor Lobo <lobocode@gmail.com><br>To: "Portuguese (Brazilian) CentOS mailing list"<br> <centos-pt-br@centos.org><br>Subject: Re: [CentOS-pt-br] Sarg!<br>Message-ID:<br> <CAOcJv=kFxzCdAcPY+P1D3R=TL7r7nsv3p9wgBXZ+Hk6_aWYFag@mail.gmail.com><br>Content-Type: text/plain; charset="utf-8"<br><br>Glenio, bom dia.<br>Precisamos visualizar os arquivos de configuração do Sarg para lhe<br>auxiliar. Neste caso, se puder, posta no pastebim privado (abre conta la).<br>Visualiza também sem o timestamp da máquina host está correto.<br><br>Att,<br><br>Em 28 de setembro de 2016 15:15, Glenio Cortes Himmen <<br>glenio.11622x@aparecida.go.gov.br> escreveu:<br><br>> Senhores,<br>><br>> Estou tendo problemas com o Sarg.<br>><br>> Ele não está lendo os novos registros.<br>><br>> Abaixo as mensagens.<br>><br>> SARG: Registros no arquivo: 181872, lendo: 100,00%<br>> SARG: Nenhum registro encontrado<br>> SARG: Fim<br>><br>> SARG: Registros no arquivo: 181383, lendo: 100,00%<br>> SARG: Nenhum registro encontrado<br>> SARG: Fim<br>><br>> ARQUIVO/PERÍODO DATA DE CRIAÇÃO USUÁRIOS BYTES MÉDIA<br>> 2016Sep19-2016Sep22 Qui 22 Set 2016 13:38:38 BRT 1 351.57M<br>> 351.57M<br>> 2016Sep18-2016Sep22 Qui 22 Set 2016 10:06:54 BRT 28 4.43G<br>> 158.30M<br>> 2015Mar23-2015Mar27 Sex 27 Mar 2015 10:49:56 BRT 52 13.89G<br>> 267.25M<br>> 2015Mar08-2015Mar10 Ter 10 Mar 2015 16:34:32 BRT 47 3.90G<br>> 83.14M<br>> 2015Mar01-2015Mar05 Qui 05 Mar 2015 10:28:29 BRT 57 5.53G<br>> 97.05M<br>> 2015Feb23-2015Feb27 Sex 27 Fev 2015 08:41:04 BRT 62 5.11G<br>> 82.57M<br>> 2015Feb23-2015Feb26 Qui 26 Fev 2015 09:18:22 BRT 55 3.21G<br>> 58.42M<br>> 2015Feb23-2015Feb23 Seg 23 Fev 2015 17:08:32 BRT 49 1.78G<br>> 36.42M<br>> 2015Feb15-2015Feb20 Sex 20 Fev 2015 16:37:56 BRST 47 6.18G<br>> 131.69M<br>> 23Mar2015-27Mar2015 Sex 27 Mar 2015 10:49:08 BRT 52 13.87G<br>> 266.85M<br>><br>> Como vocês podem ver, a leitura feita em dois horários diferentes mostra<br>> que o arquivo contem mais dados, mas na hora de gerar o relatório, ele fala<br>> que não tem novidades.<br>><br>> Alguma dica?<br>><br>> CentOS release 6.8 (Final)<br>> Gerado por sarg-2.3.8 Feb-07-2014 <http://sarg.sourceforge.net> em<br>> Set/22/2016 13:38<br>><br>> Glênio Côrtes Himmen<br>> SMTA - Sup. Municipal de Trânsito de Aparecida<br>> glenio.11622x@aparecida.go.gov.br<br>><br>> _______________________________________________<br>> CentOS-pt-br mailing list<br>> CentOS-pt-br@centos.org<br>> https://lists.centos.org/mailman/listinfo/centos-pt-br<br>><br>><br><br><br>-- <br>*Vitor Lobo*<br>Analista de Sistemas Jr.<br>LEMAF - Laboratório de Estudos e Projetos em Manejo Florestal<br>Campus UFLA - Cp: 3060<br>Lavras - MG<br>Cep - 37200-000<br>(35) 99236-7502<br>-------------- Próxima Parte ----------<br>Um anexo em HTML foi limpo...<br>URL: <http://lists.centos.org/pipermail/centos-pt-br/attachments/20160929/20cfd690/attachment-0001.html><br><br>------------------------------<br><br>_______________________________________________<br>CentOS-pt-br mailing list<br>CentOS-pt-br@centos.org<br>https://lists.centos.org/mailman/listinfo/centos-pt-br<br><br><br>Fim da Digest CentOS-pt-br, volume 114, assunto 7<br>*************************************************<br></div></div></body></html>