Firewall Wizards mailing list archives
Re: Content filtering - how to enforce at home
From: pkc_mls <pkc_mls () yahoo Fr>
Date: Thu, 09 Sep 2010 08:41:38 +0200
Le 9/8/2010 9:18 PM, Wieslaw Lubas a écrit :
This 7 years hacker is so smart he will replace the software running on the PC with a livecd to bypass the software restriction.Hi,Scenario 1a. Smart 7 years young hacker replaces "appliance" with some non-filtering proxy, using the same IP. How to avoid this hack?Scenario 2a. Smart 7 years young hacker clones "appliance" MAC and connects dorectly to CPE.How to avoid this hack? 802.1x?Scenario 2b. CPE is provider-managed - in my case cable modem acting as a bridge. No mac filtering. Any connected DHCP client gets online. Anything else than physical lock will help (connecting cable modem with "appliance", setting up appliance as DHCP server, both boxes secured with key in enclosure)?Is there any software based solution that could do the job?
Unless you find a PC without CD and USB port.
Specifically, tamper proof network driver acting as ICAP client (I could install filter with ICAP server in remote location).Wieslaw
_______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Content filtering - how to enforce at home Wieslaw Lubas (Sep 08)
- Re: Content filtering - how to enforce at home pkc_mls (Sep 09)
- Re: Content filtering - how to enforce at home Randall C Grimshaw (Sep 09)