Security Basics mailing list archives

RE: Monitor XP (ICS ) client connections?

From: Meidinger Chris <chris.meidinger () badenit de>
Date: Thu, 22 Apr 2004 18:51:11 +0200

Hi Dave,

is he looking for specific sites, or does he want to analyze traffic to
check what his employees are up to? If he is looking for specific sites, a
simple logging proxy server with grep would be the simplest. If he needs
some kind of interface where he can click through the sites that his
employees have visited, then I think Edward Miller's suggestions should be
fine.

It just depends what he is monitoring for.

Cheers,

Chris Meidinger

-----Original Message-----
From: David Gillett [mailto:gillettdavid () fhda edu] 
Sent: Monday, April 19, 2004 6:59 PM
To: security-basics () securityfocus com
Subject: Monitor XP (ICS ) client connections?

  A friend who runs a small business (across the continent 
from me, currently) is using XP with connection sharing, and 
has expressed concern that some of his employees may be 
endangering the network by visiting URLs they shouldn't.  
He'd like to be able to do some basic monitoring of the ICS 
connection, without getting into full-blown sniffing and 
packet disassembly.

  Can anyone recommend (or, based on experience, recommend 
against!) tools for this job?  It doesn't have to be in real 
time, it's okay if it sits in the background collecting info 
and he just checks it every now and then.

Dave Gillett

--------------------------------------------------------------
-------------
Ethical Hacking at the InfoSec Institute. Mention this ad and 
get $545 off any course! All of our class sizes are 
guaranteed to be 10 students or less to facilitate one-on-one 
interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of 
in-the-field pen testing experience in our state of the art 
hacking lab. Master the skills of an Ethical Hacker to better 
assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
--------------------------------------------------------------
--------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Re: Monitor XP (ICS ) client connections? Edward Miller (Apr 20)
- <Possible follow-ups>
- RE: Monitor XP (ICS ) client connections? Meidinger Chris (Apr 24)
- RE: Monitor XP (ICS ) client connections? Garzona, Harry (Apr 26)
  - RE: Monitor XP (ICS ) client connections? David Gillett (Apr 26)