Re: Blocking Proxy/HTTP Tunneling servers

["Scholz, Greg" <gscholz () KEENE EDU>]

You may want to look into bluecoat.  We started looking at it for other
reasons (perimeter AV) but uncovered that it is a tremendously robust
system.  Like most others on this list, we are higher ed so the idea of
content filtering here is not exactly on the table.

 

_________________________

Thank you,

Gregory R. Scholz

Lead Network Engineer

Information Technology Group

Keene State College

(603)358-2070

 

--Seek first to understand, and then to be understood. 

(Steven Covey)

  _____  

From: Justin Dover [mailto:dover () HARPETHHALL ORG] 
Sent: Monday, February 06, 2006 12:57 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Blocking Proxy/HTTP Tunneliing servers

 

The EDUCAUSE Security Discussion Group Listserv
<SECURITY () LISTSERV EDUCAUSE EDU> on Monday, February 06, 2006 at 11:53
AM -0600 wrote:
You know all the usual suspects - cybersitter,
cyber patrol, surfwatch, netnanny etc...

I think these are all clients that must be installed on each user's
machine.  I am looking for a global solution that installs at the
perimeter of the network.  A few ideas of course are proxy
servers/content filtering services like Websense.  I do agree with
maintaining my own list of "bad" ips is a losing battle.

Justin Dover
Harpeth Hall School
615-346-0082