Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Blocking Proxy/HTTP Tunneliing servers

From: Justin Dover <dover () HARPETHHALL ORG>
Date: Mon, 6 Feb 2006 12:20:43 -0600
The EDUCAUSE Security Discussion Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> on Monday,
February 06, 2006 at 12:13 PM -0600 wrote:

If students are intentionally and knowingly using 3rd party proxies to
bypass your block list, the only *appropriate* solution here is to apply
the penalties you spelled out in your AUP.  Otherwise, you're trying to
apply technical measures to solve what is at root a social problem.
Keep in mind that the *desired* goal is one where you can just tell them
"Don't do that", and they will in fact not do it, rather than do it just
to be difficult...

I'd suggest running Ethereal or similar, figure out what the requests to
proxies look like (hint - a URL inside the data section of a POST request
is likely suspect), and then run Snort or similar to find offenders.

Then round up the top 10 offending kids (you probably already know who they
are, anyhow), and make an example of them...

You may as well *totally* give up on the concept that you can *prevent* a
determined student from accessing inappropriate content - if the applicable
law *requires* that, I suggest a pair of wirecutter pliers.  Seriously.


Funny that you said that.  You and I think alike.  That is already one of my suggestions that I
made and the one that I support.  That is what I hope and expect administration to do but I like to
be prepared for "other" solutions.

Justin Dover
Harpeth Hall School
615-346-0082
Previous By Date Next
Previous By Thread Next

Current thread: