Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Proxy Port detection

from [Andrew Shore] Network Security [Permanent Link]
Subject: RE: Proxy Port detection
Date: Thu, 23 Dec 2004 10:19:13 -0000 
One way is to take away the users right to change proxy settings, this
does assume you have win2k/XP on the clients and some form of domain
management (NT policy or AD)

Then remove the connections tab from the users and set the policy to not
use a proxy.

You can do this by hand if you have no policy functions or by using the
ieak to create a new install.

HTH

Andy


-----Original Message-----
From: John Madden [mailto:chiwawa999@yahoo.com] 
Sent: 22 December 2004 15:45
To: SECURITY-BASICS@securityfocus.com
Subject: Proxy Port detection

Hi,

In our enterprise we have URL filtering capabilities
and we restrict the usual sites (Porn, Sports,
Gambling etc..)

We do not use a proxy, so everyone goes directly to
the internet. 

I believe that some users put in their proxy settings
an anonymous proxy using port 80 (which is obviously
allowed) and in that manner avoid the restriction of
the URL filtering.

First thoughts:

- Blocking all the anonymous proxy is imposible and  
would be a full time job
- The use of a proxy is not an option right now

Is there any way to detect this type of traffic
(HTTP-Proxy) ?

I'm sure someone had this problem before...

Any help would be appreciated.

Thanks


                
__________________________________ 
Do you Yahoo!? 
Yahoo! Mail - Helps protect you from nasty viruses. 
http://promotions.yahoo.com/new_mail
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: IIS volunrability scan results, Andrew Shore
Next by Date:  RE: what is required for an engineer to become an SECURITY engineer, Oscar Díaz
Previous by Thread:  Re: Proxy Port detection, Ivan Coric
Next by Thread:  Recover SCO UNIX root password, Mandelcorn, Seymour
Indexes:  [Date] [Thread] [Top] [All Lists]