Security Basics mailing list archives

RE: Stop browsing the web through GP?

From: "Steven A. Fletcher" <sfletcher () bcsc com>
Date: Mon, 15 Sep 2003 17:14:30 -0500

You also might try using a policy to set the proxy server to something
invalid and restrict them from changing that setting.  That way, they
can open IE, but they will never get anywhere.

Steven A. Fletcher, A+, MCP, MCSE (NT 4), Master ASE, CCNA, CCA
Senior Network Engineer
BCSC Technology Solutions
(309)664-8162
sfletcher () bcsc com

-----Original Message-----
From: Birl [mailto:sbirl () temple edu] 
Sent: Monday, September 15, 2003 9:46 AM
To: security-basics () securityfocus com
Subject: Re: Stop browsing the web through GP?

As it was written on Sep 11, thus Spencer D'oro typed:

Spencer:  Return-Path:
Spencer:
<security-basics-return-23594-sbirl=temple.edu () securityfocus com>
Spencer:  Date: Thu, 11 Sep 2003 19:00:31 -0700
Spencer:  From: Spencer D'oro <sdoro () comcast net>
Spencer:  To: security-basics () securityfocus com
Spencer:  Subject: Stop browsing the web through GP?
Spencer:
Spencer:  I have a Windows Server 2003 domain.  I am looking for a way
to keep
Spencer:  users in a partcular OU from browsing the web.  I want to
accomplish
Spencer:  this through Group Policy, but I can't find anything in the
ADM
Spencer:  templates for Users or for Computers.  Is there another ADM
template I
Spencer:  am missing?  Or is the policy all ready present and I am
missing it?  I
Spencer:  have tried searching on Tech-Net and Google and I haven't been
able to
Spencer:  find anything.  Please help.
Spencer:
Spencer:  Loki


Have you tried tweaking the NTFS permissions for that specific browser?
It should be trivial to deny read,execute for a specific group.


Thanks

 Scott Birl
http://concept.temple.edu/sysadmin/
 Senior Systems Administrator            Computer Services   Temple
University
====*====*====*====*====*====*====*====+====*====*====*====*====*====*==
==*====*

------------------------------------------------------------------------
---
Captus Networks 
Are you prepared for the next Sobig & Blaster? 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans 
 - Precisely Define and Implement Network Security 
 - Automatically Control P2P, IM and Spam Traffic 
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit 
http://www.captusnetworks.com/ads/42.htm
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
Captus Networks
Are you prepared for the next Sobig & Blaster?
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Precisely Define and Implement Network Security
 - Automatically Control P2P, IM and Spam Traffic
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

Current thread:

Stop browsing the web through GP? Spencer D'oro (Sep 12)
- Re: Stop browsing the web through GP? Birl (Sep 15)
- Re: Stop browsing the web through GP? Dave M. (Sep 16)
  - RE: Stop browsing the web through GP? Faisal Masood (Sep 17)
    - RE: Stop browsing the web through GP? Phillip McCollum (Sep 22)
- <Possible follow-ups>
- RE: Stop browsing the web through GP? McGill, Lachlan (Sep 15)
  - RE: Stop browsing the web through GP? Simon Taplin (Sep 16)
- RE: Stop browsing the web through GP? Wesley T. Scott (Sep 15)
- RE: Stop browsing the web through GP? Thomas F. Szabo (Sep 15)
- RE: Stop browsing the web through GP? Steven A. Fletcher (Sep 16)
- RE: Stop browsing the web through GP? Angie Urtel (Sep 16)