SurfControl offers nonstop protection for Web, e-mail, IM, P2P, and
mobile workstations. View link below for more information. You can
browse to the download section for a free trial.
http://www.surfcontrol.com/Default.aspx?id=374&mnuid=1
Nicholas Fanelli
-----Original Message-----
From: Martin [mailto:illuminaeti@gmail.com]
Sent: Monday, December 26, 2005 8:23 PM
To: security-basics@securityfocus.com
Subject: Re: Program to monitor employee internet usage
A member of management has asked me to research available programs to
log internet usage (web surfing) on our corporate network.
We are running a Windows server with a mix of XP and 2K clients.
What have some of you used to provide this in a report that management
can use to show that a user is spending too much time on the internet?
We use Squid proxy on a win2k platform. We rotate logs daily and save
them so we can make random checks on users. Squid also allows us to
block websites based on keywords. We set the mandatory proxy in internet
explorer with group policies so users can't disable it.
For reporting, there are many tools out there. Webalizer is easy to use
and can generate nice graphics. You have to be careful interpreting logs
though, because a log may show one hit on a page but won't tell you the
employee spent 3 hours reading said page.
As for privacy concerns, everyone on the network is required to sign the
network security policy, which specifically states that all web surfing
and email usage is monitored.
------------------------------------------------------------------------
---
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting
experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity
Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
----
CONFIDENTIALITY NOTICE: This communication may contain privileged and/or
confidential information. It is intended solely for the use of the addressee.
If you are not the intended recipient, you are strictly prohibited from
disclosing, copying, distributing or using any of this information. If you
received this communication in error, please contact the sender immediately and
destroy the material in its entirety, whether electronic or hard copy. This
communication may contain nonpublic personal information about consumers
subject to the restrictions of the Gramm-Leach-Bliley Act. You may not directly
or indirectly reuse or redisclose such information for any purpose other than
to provide the services for which you are receiving the information.
---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------
