Educause Security Discussion mailing list archives
Re: Blocking Proxy/HTTP Tunneliing servers
From: Justin Dover <dover () HARPETHHALL ORG>
Date: Mon, 6 Feb 2006 12:20:43 -0600
The EDUCAUSE Security Discussion Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> on Monday, February 06, 2006 at 12:13 PM -0600 wrote:
If students are intentionally and knowingly using 3rd party proxies to bypass your block list, the only *appropriate* solution here is to apply the penalties you spelled out in your AUP. Otherwise, you're trying to apply technical measures to solve what is at root a social problem. Keep in mind that the *desired* goal is one where you can just tell them "Don't do that", and they will in fact not do it, rather than do it just to be difficult... I'd suggest running Ethereal or similar, figure out what the requests to proxies look like (hint - a URL inside the data section of a POST request is likely suspect), and then run Snort or similar to find offenders. Then round up the top 10 offending kids (you probably already know who they are, anyhow), and make an example of them... You may as well *totally* give up on the concept that you can *prevent* a determined student from accessing inappropriate content - if the applicable law *requires* that, I suggest a pair of wirecutter pliers. Seriously.
Funny that you said that. You and I think alike. That is already one of my suggestions that I made and the one that I support. That is what I hope and expect administration to do but I like to be prepared for "other" solutions. Justin Dover Harpeth Hall School 615-346-0082
Current thread:
- Blocking Proxy/HTTP Tunneliing servers Justin Dover (Feb 06)
- <Possible follow-ups>
- Re: Blocking Proxy/HTTP Tunneliing servers Joel Rosenblatt (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Ken Connelly (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Gary Flynn (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Graham Toal (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Justin Dover (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Graham Toal (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Christopher Chow (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Justin Dover (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Valdis Kletnieks (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Justin Dover (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers O'Callaghan, Daniel (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Graham Toal (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Cal Frye (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers John Nunnally (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers John Nunnally (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers John Stauffacher (Feb 06)
- Re: Blocking Proxy/HTTP Tunneliing servers Justin Dover (Feb 07)
- Re: Blocking Proxy/HTTP Tunneliing servers George Bailey (Feb 07)
- Re: Blocking Proxy/HTTP Tunneliing servers Tran , Lieu D (Feb 07)
- Re: Blocking Proxy/HTTP Tunneliing servers Jeni Li (Feb 07)
(Thread continues...)