Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




85 posts

Master Geek


# 43990 23-Oct-2009 11:44
Send private message

To cut a long story short, what defense are you guys using against users using proxy avoidance sites?

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
1094 posts

Uber Geek


  # 267294 27-Oct-2009 15:24
Send private message

We are using WebMarshal with a custom list of web proxy sites (see here: http://www.geekzone.co.nz/forums.asp?forumid=86&topicid=41051)

Options you have depending on your setup:

- Use group policy to force users through a proxy server (freeProxy)
- Set that proxy server to block the webproxy sites

Or
- Use group policy to block each site in Internet Options' blocked sites

xpd

SysOp
10263 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267298 27-Oct-2009 15:35
Send private message

Using Webmarshal as well....only seem to have a few users trying to bypass it now, most have given up :)




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Workstation : Ryzen 5 3600 / 16GB DDR4 / RX580 4GB    Console : Xbox One

 

Now on BigPipe 100/100 and 2Talk  Add me on Steam   My Lego

 

Current Projects : Arcade Machine          BBS (WIP)


 
 
 
 


41 posts

Geek


  # 267303 27-Oct-2009 15:47

We also use WebMarshal. In addition Active Directory is set to enforce usage of WebMarshal. Cisco firewall is configure to only allow WebMarshal server out to the internet.

We also run monthly WebMarshal usage reports to check the most popular websites used and if we see any proxy avoidance sites, we blacklist the url's so they cannot be access moving forward.


635 posts

Ultimate Geek


  # 267624 28-Oct-2009 10:37
Send private message

We use AD, DHCP 252, and a WPAD file to try and capture all Internet Traffic and send it via Webmarshal. We were going to block all traffic except that from Webmarshal at the firewall but this caused problems with Citrix clients and our default IM tools.

I used to avoid proxies by using Google's Translatation tool. Not sure this would still work but simplist way to test is to use google and some dodgy site and see what you get back.

cheers
db




Home Server: AMD Threadripper 1950X, 64GB, 56TB HDD, Define R6 Case, 10GbE, ESXi 6.7, UNRAID, NextPVR, Emby Server, Plex Server.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Main PC: Ryzen 7 2700, 16GB RAM, RX 570, 2 x 24"




85 posts

Master Geek


  # 267772 28-Oct-2009 17:47
Send private message

There has got to be an easier way than manually blocking each site, is there any sort of real time block list or proxy server with the ability to update this list by itself around? 


We currently have an older version of web marshall and that is the only thing allowed out, but various people are using these sites. I could go through the logs and read through and manually block them but it doesn't exactly sound like a long term solution. There has to be an easier way!!!!

xpd

SysOp
10263 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267779 28-Oct-2009 18:00
Send private message

Use a provider like Watchdog. They offer filtering service at a cost.




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Workstation : Ryzen 5 3600 / 16GB DDR4 / RX580 4GB    Console : Xbox One

 

Now on BigPipe 100/100 and 2Talk  Add me on Steam   My Lego

 

Current Projects : Arcade Machine          BBS (WIP)


1094 posts

Uber Geek


  # 267785 28-Oct-2009 18:17
Send private message

If you are already using WebMarshal, just download the files I created and import them into your blocked sites list. There are hundreds of sites in those files which will block all but the recent one created.

 
 
 
 


xpd

SysOp
10263 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 267792 28-Oct-2009 18:42
Send private message

Wonder if theres some way to import those files automatically.....




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Workstation : Ryzen 5 3600 / 16GB DDR4 / RX580 4GB    Console : Xbox One

 

Now on BigPipe 100/100 and 2Talk  Add me on Steam   My Lego

 

Current Projects : Arcade Machine          BBS (WIP)


137 posts

Master Geek
Inactive user


  # 267861 28-Oct-2009 21:42
Send private message

Use a proxy/filtering service that gets updates. Websense is pretty good. If you keep blocking the problem users eventually they give up (or find ways that you can't track) ;)

BTW, why do you care what they do? Is it malicious? Is it a problem for the network? Does it expose you to liability? Does it cost you money? or is it more about being in control and policing what people can view?

Just curious...

2887 posts

Uber Geek

Trusted
Lifetime subscriber

  # 267864 28-Oct-2009 21:56
Send private message

Is something like opendns.org any good? I have set it up for a couple of home users and it seems to work pretty well. Are there any sneaky ways around this I should be on the lookout for?




My views (except when I am looking out their windows) are not those of my employer.

8035 posts

Uber Geek

Trusted

  # 267878 28-Oct-2009 22:52
Send private message

You can always go with a different tack and use software like Rescue Time to record users activity and behaviour patterns rather than trying to block moving targets. This lets the good users check facebook, trademe or geekzone in their lunch break while identifying the bad users who spend their whole day doing nothing but Facebook.




85 posts

Master Geek


  # 267957 29-Oct-2009 09:03
Send private message

JDNZ: Use a proxy/filtering service that gets updates. Websense is pretty good. If you keep blocking the problem users eventually they give up (or find ways that you can't track) ;)

BTW, why do you care what they do? Is it malicious? Is it a problem for the network? Does it expose you to liability? Does it cost you money? or is it more about being in control and policing what people can view?

Just curious...



I see what your saying but realistically if the IT manager tells me to block facebook and then walks past some people who are looking at facebook I look like a bit of a dick



85 posts

Master Geek


  # 267960 29-Oct-2009 09:09
Send private message

Sounds like manually importing Jaymz's list will be the best way. Will do that today. Would be really cool if someone made an automatic update feature/plug in

BDFL - Memuneh
65382 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

1094 posts

Uber Geek


  # 267963 29-Oct-2009 09:16
Send private message

Something else that might help you jamesla, I found a great little tool that will allow you to push out group policy on all the machines on the domain (rather than using command line stuff)

http://www.specopssoft.com/products/specopsgpupdate/

It adds an option inside active directory that allows you to run gpupdate. Helps standardise the state of group policy on the network.

Also, does your company have an internet usage contract? If it does you may want to highlight this to your users if it states personal websurfing is not allowed.

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43


Suunto 7 combine sports and smart features on new smartwatch generation
Posted 7-Jan-2020 16:06


Intel brings innovation with technology spanning the cloud, network, edge and PC
Posted 7-Jan-2020 15:54


AMD announces high performance desktop and ultrathin laptop processors
Posted 7-Jan-2020 15:42


AMD unveils four new desktop and mobile GPUs including AMD Radeon RX 5600
Posted 7-Jan-2020 15:32


Consolidation in video streaming market with Spark selling Lightbox to Sky
Posted 19-Dec-2019 09:09



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.