Re: N00b Question

[Ismael Gonzalez <wortos () gmail com>]

Hi,

The problem with MSN/Yahoo! chat programs is that they can be
configure to use the same port as web browsing (80) therefore the best
solution is to not let them install the programs in the first place.

That can be done with restricting the users account to mere
domain\users instead of administrators (From your e-mail I can assume
that your users are using Windows).

If they have administrator permissions, even computer administrator,
you will have a difficult time trying to stop them.

Commercial products abound that can monitor your network for these
kind of programs so to let them go to the net but you stated you
wanted to use open source. Therefore, the best thing you can do is to
use what you already have.

To give you a more specific solution I would need to know how your
network is configured. Domain, workgroup, WIn 9x, NT, 2000, XP or
2003?

Hope this helps you find the right answer.




On Thu, 30 Dec 2004 11:41:51 -0500, Harshal Dedhia
<harshal.dedhia () skybird-travel com> wrote:
> Hi,
> I am very new to the firewall and network security world. I have a
> situation wherein  I need to block webbased email access and the ability
> to upload attachments to web-based email. I also need to ensure that
> MSN/yahoo chat is disabled and quotas are established for web surfing.
>
> Is there an Open Source solution to this problem. The network comprises
> Cisco Routers and 500 series firewalls.
>
> Cheers!
> Harshal


-- 
Ismael Gonzalez
CEO / Consultant
Allied Technologies, Inc.