Squidalyser offers per-user scrutiny and analysis of squid logfiles, making it the ideal squid traffic analyzer software.
One of the key features of this software program is the graphs, which show the relative levels of net access. This feature allows you to identify your most active users and determine how much information they have been downloading. High levels of activity might indicate over-use of the web or that a user has "lent" their password to another user. In certain circumstances, over-activity might mean a system is running proxy software of its own, either with or without the owner's permission, or running a robot to search for mp3s or warez. On the other hand, lower levels of activity might mean someone is under-using the web or is uncertain about the technology.
Clickable lists of pages visited allow you to scan through the 'audit trail' for a user or group of users, either to ensure they have not infringed your acceptable use policy, or to check they have visited a site they ought to have visited - to complete a set task for a school project, for example. In addition, a briefer list of sites visited provides a quicker overview of Internet usage, while a list of blocked accesses is useful for identifying who has been trying to get around your censorware.
Another exciting feature of Squidalyser is the ability to view a page of images downloaded. Most pornography will be in graphical format, and since those images will already be in your squid cache, it takes little time to view all of them on a page, per user. Paging through such a list takes little time but is very effective at finding out what users have been looking at on the web.
Users can also create their own groups of users, corresponding to school classes or work-groups, and apply all the above report formats to those users. Additionally, users can create a list of suspect words to match against web URLs, which can be combined with user-groups for rapid scanning of large sections of your logfile.
In terms of updates, the latest version of Squidalyser includes an implemented suggestion from Lombardo to store domain:user in the rfc931 database field, if using NTLM. The patch to squidparse.pl which takes account of NTLM in the first place has also been reinstated, and a new "include_domain" parameter in squidalyser.conf has been added to make the inclusion of the domain (in domain:user) format an option. Overall, Squidalyser is a reliable and effective software program for analyzing squid traffic and gaining valuable insights into web usage patterns.
Version 0.2.55: N/A