Security Basics mailing list archives
RE: Proxy Port detection
From: "Andrew Shore" <andrew.shore () holistecs com>
Date: Thu, 23 Dec 2004 10:19:13 -0000
One way is to take away the users right to change proxy settings, this does assume you have win2k/XP on the clients and some form of domain management (NT policy or AD) Then remove the connections tab from the users and set the policy to not use a proxy. You can do this by hand if you have no policy functions or by using the ieak to create a new install. HTH Andy -----Original Message----- From: John Madden [mailto:chiwawa999 () yahoo com] Sent: 22 December 2004 15:45 To: SECURITY-BASICS () securityfocus com Subject: Proxy Port detection Hi, In our enterprise we have URL filtering capabilities and we restrict the usual sites (Porn, Sports, Gambling etc..) We do not use a proxy, so everyone goes directly to the internet. I believe that some users put in their proxy settings an anonymous proxy using port 80 (which is obviously allowed) and in that manner avoid the restriction of the URL filtering. First thoughts: - Blocking all the anonymous proxy is imposible and would be a full time job - The use of a proxy is not an option right now Is there any way to detect this type of traffic (HTTP-Proxy) ? I'm sure someone had this problem before... Any help would be appreciated. Thanks __________________________________ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail
Current thread:
- Proxy Port detection John Madden (Dec 22)
- Re: Proxy Port detection Alexander Klimov (Dec 23)
- <Possible follow-ups>
- Re: Proxy Port detection Steve Crapo (Dec 23)
- Re: Proxy Port detection Ivan Coric (Dec 23)
- RE: Proxy Port detection Andrew Shore (Dec 23)