Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




85 posts

Master Geek


# 43990 23-Oct-2009 11:44
Send private message

To cut a long story short, what defense are you guys using against users using proxy avoidance sites?

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
1094 posts

Uber Geek


  # 267294 27-Oct-2009 15:24
Send private message

We are using WebMarshal with a custom list of web proxy sites (see here: http://www.geekzone.co.nz/forums.asp?forumid=86&topicid=41051)

Options you have depending on your setup:

- Use group policy to force users through a proxy server (freeProxy)
- Set that proxy server to block the webproxy sites

Or
- Use group policy to block each site in Internet Options' blocked sites

xpd

Chief Trash Bandit
9931 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267298 27-Oct-2009 15:35
Send private message

Using Webmarshal as well....only seem to have a few users trying to bypass it now, most have given up :)




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

Emulation - The art of getting your $4000 PC to run an 80's system - and still fails.

 

Add me on Steam


 
 
 
 


41 posts

Geek


  # 267303 27-Oct-2009 15:47

We also use WebMarshal. In addition Active Directory is set to enforce usage of WebMarshal. Cisco firewall is configure to only allow WebMarshal server out to the internet.

We also run monthly WebMarshal usage reports to check the most popular websites used and if we see any proxy avoidance sites, we blacklist the url's so they cannot be access moving forward.


635 posts

Ultimate Geek


  # 267624 28-Oct-2009 10:37
Send private message

We use AD, DHCP 252, and a WPAD file to try and capture all Internet Traffic and send it via Webmarshal. We were going to block all traffic except that from Webmarshal at the firewall but this caused problems with Citrix clients and our default IM tools.

I used to avoid proxies by using Google's Translatation tool. Not sure this would still work but simplist way to test is to use google and some dodgy site and see what you get back.

cheers
db




Home Server: AMD Threadripper 1950X, 64GB, 56TB HDD, HP Smart Array P420, Define R6 Case, 10GbE, ESXi 6.7, NextPVR, Emby Server, Plex Server, 2 x HDHomerun.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby, NextPVR, 250GB SSD.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby, NextPVR, 120GB SSD
Main PC: Ryzen 7 2700, 16GB RAM, RX 570, 2 x 24"




85 posts

Master Geek


  # 267772 28-Oct-2009 17:47
Send private message

There has got to be an easier way than manually blocking each site, is there any sort of real time block list or proxy server with the ability to update this list by itself around? 


We currently have an older version of web marshall and that is the only thing allowed out, but various people are using these sites. I could go through the logs and read through and manually block them but it doesn't exactly sound like a long term solution. There has to be an easier way!!!!

xpd

Chief Trash Bandit
9931 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267779 28-Oct-2009 18:00
Send private message

Use a provider like Watchdog. They offer filtering service at a cost.




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

Emulation - The art of getting your $4000 PC to run an 80's system - and still fails.

 

Add me on Steam


1094 posts

Uber Geek


  # 267785 28-Oct-2009 18:17
Send private message

If you are already using WebMarshal, just download the files I created and import them into your blocked sites list. There are hundreds of sites in those files which will block all but the recent one created.

 
 
 
 


xpd

Chief Trash Bandit
9931 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267792 28-Oct-2009 18:42
Send private message

Wonder if theres some way to import those files automatically.....




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

Emulation - The art of getting your $4000 PC to run an 80's system - and still fails.

 

Add me on Steam


137 posts

Master Geek
Inactive user


  # 267861 28-Oct-2009 21:42
Send private message

Use a proxy/filtering service that gets updates. Websense is pretty good. If you keep blocking the problem users eventually they give up (or find ways that you can't track) ;)

BTW, why do you care what they do? Is it malicious? Is it a problem for the network? Does it expose you to liability? Does it cost you money? or is it more about being in control and policing what people can view?

Just curious...

2850 posts

Uber Geek

Trusted
Lifetime subscriber

  # 267864 28-Oct-2009 21:56
Send private message

Is something like opendns.org any good? I have set it up for a couple of home users and it seems to work pretty well. Are there any sneaky ways around this I should be on the lookout for?




My views (except when I am looking out their windows) are not those of my employer.

8033 posts

Uber Geek

Trusted

  # 267878 28-Oct-2009 22:52
Send private message

You can always go with a different tack and use software like Rescue Time to record users activity and behaviour patterns rather than trying to block moving targets. This lets the good users check facebook, trademe or geekzone in their lunch break while identifying the bad users who spend their whole day doing nothing but Facebook.




85 posts

Master Geek


  # 267957 29-Oct-2009 09:03
Send private message

JDNZ: Use a proxy/filtering service that gets updates. Websense is pretty good. If you keep blocking the problem users eventually they give up (or find ways that you can't track) ;)

BTW, why do you care what they do? Is it malicious? Is it a problem for the network? Does it expose you to liability? Does it cost you money? or is it more about being in control and policing what people can view?

Just curious...



I see what your saying but realistically if the IT manager tells me to block facebook and then walks past some people who are looking at facebook I look like a bit of a dick



85 posts

Master Geek


  # 267960 29-Oct-2009 09:09
Send private message

Sounds like manually importing Jaymz's list will be the best way. Will do that today. Would be really cool if someone made an automatic update feature/plug in

1094 posts

Uber Geek


  # 267963 29-Oct-2009 09:16
Send private message

Something else that might help you jamesla, I found a great little tool that will allow you to push out group policy on all the machines on the domain (rather than using command line stuff)

http://www.specopssoft.com/products/specopsgpupdate/

It adds an option inside active directory that allows you to run gpupdate. Helps standardise the state of group policy on the network.

Also, does your company have an internet usage contract? If it does you may want to highlight this to your users if it states personal websurfing is not allowed.

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Facebook Portal to land in New Zealand
Posted 19-Sep-2019 18:35


Amazon Studios announces New Zealand as location for its upcoming series based on The Lord of the Rings
Posted 18-Sep-2019 17:24


The Warehouse chooses Elasticsearch service
Posted 18-Sep-2019 13:55


Voyager upgrades core network to 100Gbit
Posted 18-Sep-2019 13:52


Streaming service Acorn TV launches in New Zealand with selection with British shows
Posted 18-Sep-2019 08:55


Bitcoin.com announces partnership with smartphone manufacturer HTC
Posted 16-Sep-2019 21:30


Finalists Announced for Microsoft NZ Partner Awards
Posted 16-Sep-2019 19:37


OPPO Showcases New CameraX Capabilities at Google Developer Days China 2019
Posted 15-Sep-2019 12:42


New Zealand PC Market returns to growth
Posted 15-Sep-2019 12:24


Home sensor charity director speaks about the preventable death which drives her to push for healthy homes
Posted 11-Sep-2019 08:46


Te ao Maori Minecraft world set to inspire Kiwi students
Posted 11-Sep-2019 08:43


Research reveals The Power of Games in New Zealand
Posted 11-Sep-2019 08:40


Ring Door View Cam now available in New Zealand
Posted 11-Sep-2019 08:38


Vodafone NZ to create X Squad
Posted 10-Sep-2019 10:25


Huawei nova 5T to be available 20th September
Posted 5-Sep-2019 11:55



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.