[CentOS-es] SARG y reportes

Jue Ene 31 15:49:01 UTC 2008

Instale el sarg y me genera reportes cuando se los pido con
sarg -d dd/mm/aaaa-dd/mm/aaaa.

Esta bien, pero me esta dando reportes solo de las descargas y no puedo 
hacer que me de reportes de los sitios visitados.
Ademas cuando esta generando el reporte, despues de leer el 100%, pasan 
unos segundos y da un mensaje en la consola: "violacion de segmento"

Alguna recomendacion que me puedan dar??

centos 5
squid 2.6
sarg 2.2.3.1

mi sarg.conf

# sarg.conf

language Spanish
access_log /var/log/squid/access.log
graphs yes
graph_days_bytes_bar_color orange
title "Squid - Reporte de Accesos de usuarios"
font_face Tahoma,Verdana,Arial
header_color darkblue
header_bgcolor blanchedalmond
font_size 9px
header_font_size 9px
title_font_size 11px
background_color white
text_color #000000
text_bgcolor lavender
title_color green
logo_image none
logo_text ""

# TAG:    logo_text_color
#    Html page logo texti color.
#
#logo_text_color #000000

# TAG:    logo_image_size
#    Html page logo image size.
#       width height
#
#image_size 80 45

# TAG:    background_image
#    Html page background image
#
#background_image none

password none

temporary_dir /tmp

#output_dir /var/www/html/squid-reports
output_dir /var/www/sarg/ONE-SHOT
resolve_ip yes
user_ip yes

topuser_sort_field BYTES reverse
user_sort_field BYTES reverse
exclude_users none
exclude_hosts none

useragent_log none
date_format u
per_user_limit none

lastlog 5
remove_temp_files yes

index yes

# TAG: index_tree date|file
index_tree file

# TAG: overwrite_report yes|no
overwrite_report yes

# TAG: records_without_userid ignore|ip|everybody
records_without_userid ip

# TAG: use_comma no|yes
use_comma no

# TAG: mail_utility mail|mailx
#      Mail command to use to send reports via SMTP
#
#mail_utility mailx
#mail_utility mail

topsites_num 50
topsites_sort_order CONNECT D
index_sort_order D

#exclude_codes /usr/local/sarg/exclude_codes

# TAG: replace_index string
#      Replace "index.html" in the main index file with this string
#      If null "index.html" is used
#
#replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo 
".html"; ?>

max_elapsed 28800000
# 8 Hours

# TAG: report_type type
report_type topusers topsites sites_users users_sites date_time denied 
auth_failures site_user_time_date downloads

# TAG: usertab filename
usertab none

# TAG: long_url yes|no
#      If yes, the full url is showed in report.
#      If no, only the site will be showed
#
#      YES option generate very big sort files and reports.
#
long_url no

# TAG: date_time_by bytes|elap
#      Date/Time reports will use bytes or elapsed time?
#
date_time_by elap

# TAG: charset name
#      ISO 8859 is a full series of 10 standardized multilingual 
single-byte coded (8bit)
#      graphic character sets for writing in alphabetic languages
#      You can use the following charsets:
#        Latin1         - West European
#        Latin2         - East European
#        Latin3         - South European
#        Latin4         - North European
#        Cyrillic
#        Arabic
#        Greek
#        Hebrew
#        Latin5         - Turkish
#        Latin6
#        Windows-1251
#        Japan
#        Koi8-r
#        UTF-8
#
charset Latin1

# TAG: user_invalid_char "&/"
#      Records that contain invalid characters in userid will be ignored 
by Sarg.
#
user_invalid_char "&/"

# TAG: privacy yes|no

privacy no

# TAG: include_users "user1:user2:...:usern"
#      Reports will be generated only for listed users.
#
#include_users none

# TAG: exclude_string "string1:string2:...:stringn"
#      Records from access.log file that contain one of listed strings 
will be ignored.
#
exclude_string none

show_successful_message yes
show_read_statistics yes

topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT 
USED_TIME MILISEC %TIME TOTAL AVERAGE

user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC 
%TIME TOTAL AVERAGE

bytes_in_sites_users_report no

# TAG: topuser_num n
#      How many users in topsites report. 0 = no limit
#
topuser_num 50

# TAG: site_user_time_date_type list|table
#      generate reports for site_user_time_date in list or table format
#
site_user_time_date_type table

# TAG: datafile file
#      Save the report results in a file to populate some database
#
datafile none

# TAG: datafile_delimiter ";"
#      ascii character to use as a field separator in datafile
#
#datafile_delimiter ";"

# TAG: datafile_fields all
#      Which data fields must be in datafile
#      user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
#
#datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed

# TAG: datafile_url ip|name
#      Saves the URL as ip or name in datafile
#
#datafile ip

# TAG: weekdays
#      The weekdays to take account ( Sunday->0, Saturday->6 )
# Example:
#weekdays 1-3,5
# Default:
weekdays 0-6

# TAG: hours
#      The hours to take account
# Example:
#hours 7-12,14,16,18-20
# Default:
hours 0-23

# TAG: dansguardian_conf file
#      DansGuardian.conf file path
#      Generate reports from DansGuardian logs.
#      Use 'none' to disable it.
#      dansguardian_conf /usr/dansguardian/dansguardian.conf
#
dansguardian_conf none

# TAG: dansguardian_ignore_date on|off
#      'on'  must use the record even the date range is different from 
the used in squid access.log file.
#      'off' must use the record only if the date range is in the irange 
used in squid access.log file.
#
#dansguardian_ignore_date off

# TAG: squidguard_conf file
#      path to squidGuard.conf file
#      Generate reports from SquidGuard logs.
#      Use 'none' to disable.
#      You can use sarg -L filename to use an alternate squidGuard log.
#      squidguard_conf /usr/local/squidGuard/squidGuard.conf
#
#squidguard_conf none

# TAG: squidguard_ignore_date on|off
#      Use 'on'  use the record even the date range is different from 
the used squid access.log file.
#      Use 'off' use the record only if the date range is in the used 
squid access.log file.
#
#squidguard_ignore_date off

# TAG: squidguard_log_format
#      Format string SquidGuard logs.
#      REJIK       #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# 
#tmp#/#tmp#/#url#/#end#
#      SQUIDGUARD  #year#-#mon#-#day# #hour# 
#tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
#squidguard_log_format #year#-#mon#-#day# #hour# 
#tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#

# TAG: show_sarg_info yes|no
#      shows sarg information and site path on each report bottom
#
#show_sarg_info yes

# TAG: show_sarg_logo yes|no
#      shows sarg logo
#
#show_sarg_logo yes

# TAG: parsed_output_log directory
#      Saves the processed log in a sarg format after parsing the squid 
log file.
#      This is a way to dump all of the data structures out, after 
parsing from
#      the logs (presumably this data will be much smaller than the log 
files themselves),
#      and pull them back in for later processing and merging with data 
from previous logs.
#
#parsed_output_log none

# TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress
#      sarg logs compress util
#
#parsed_output_log_compress /bin/gzip

# TAG: displayed_values bytes|abbreviation
#      how the values will be displayed in reports.
#      eg. bytes      -  209.526
#          abbreviation -  210K
#
#displayed_values bytes

# Report limits
# TAG: authfail_report_limit n
# TAG: denied_report_limit n
# TAG: siteusers_report_limit n
# TAG: squidguard_report_limit n
# TAG: user_report_limit n
# TAG: dansguardian_report_limit n
# TAG: download_report_limit n
#      report limits (lines).
#      '0' no limit
#
#authfail_report_limit 10
#denied_report_limit 10
siteusers_report_limit 0
#squidguard_report_limit 10
#dansguardian_report_limit 10
user_report_limit 0

# TAG: www_document_root dir
#     Where is your Web DocumentRoot
#     Sarg will create sarg-php directory with some PHP modules:
#     - sarg-squidguard-block.php - add urls from user reports to 
squidGuard DB
#
www_document_root /var/www/html

# TAG: block_it module_url
#     This tag allow you to pass urls from user reports to a cgi or php 
module,
#     to be blocked by some Squid acl
#
#     Eg.: block_it /sarg-php/sarg-block-it.php
#     sarg-block-it is a php that will append a url to a flat file.
#     You must change /var/www/html/sarg-php/sarg-block-it to point to 
your file
#     in $filename variable, and chown to a httpd owner.
#
#     sarg will pass http://module_url?url=url
#
block_it none

# TAG: external_css_file path
#     This tag allow internal sarg css override.
#     Sarg use theses style classes:
#         .body        body class
#    .info        sarg information class, align=center
#    .title        title class, align=center
#    .header        header class, align:left
#    .header2    header class, align:right
#    .header3    header class, align:right
#    .text        text class, align:left
#    .data        table text class, align:right
#    .data2        table text class, align:right, border colors
#    .link          link class
#
#     There is a sample in /usr/local/sarg/etc/css.tpl
#
#external_css_file none
external_css_file /var/www/sarg/sarg.css

# TAG: user_authentication yes|no
#     Allow user authentication in User Reports using .htaccess
#     Parameters: 
#    AuthUserFile     - where the user password file is
#    AuthName    - authentication realm. Eg "Members Only"
#    AuthType    - authenticaion type - basic
#    Require        - authorized users to see the report.
#                                          %u - user report
#
user_authentication no
# AuthUserFile /usr/local/sarg/passwd
# AuthName "SARG, Restricted Access"
# AuthType Basic
# Require user admin %u

# TAG: download_suffix "suffix,suffix,...,suffix"
#    file suffix to be considered as "download" in Download report.
#    Use 'none' to disable.   
#
#download_suffix 
"zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"

# TAG: ulimit n
#    The maximum number of open file descriptors to avoid "Too many open 
files" error message.
#    You need to run sarg as root to use ulimit tag.
#    If you run sarg with a low privilege user, set to 'none' to disable 
ulimit
#
#ulimit 20000

# TAG: ntlm_user_format username|domainname+username
#      NTLM users format.
#
#ntlm_user_format domainname+username

# TAG: realtime_refresh_time num sec
#      How many time to auto refresh the realtime report
#      0 = disable
#
# realtime_refresh_time 3

# TAG: realtime_access_log_lines num
#      How many last lines to get from access.log file
#
# realtime_access_log_lines 1000

# TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST
#      Which records must be in realtime report.
#
# realtime_types GET,PUT,CONNECT 

# TAG: realtime_unauthenticated_records: ignore|show
#      What to do with unauthenticated records in realtime report.
#
# realtime_unauthenticated_records: show

# TAG: byte_cost value no_cost_limit
#      Cost per byte.
#      Eg. byte_cost 0.01 100000000
#           per byte cost      = 0.01
#           bytes with no cost = 100 Mb
#      0 = disable
#
# byte_cost 0.01 50000000

# TAG: squid24 on|off
#      Compatilibity with squid version <= 2.4 when using 
emulate_http_log on
#
# squid24 off