Re: Blocking URLs

[Bob Bayn <bob.bayn () USU EDU>]

I put reported or discovered phishing links in our DNS blacklist for a week.  Users get redirected to a local warning 
page that does not have a pass-thru option.  The redirects auto-expire after a week.  Of course, people who use other 
DNS services than ours are unaffected.

Bob Bayn      SER 301      (435)797-2396    IT Security Team
Office of Information Technology,         Utah State University
    Do you know the "Skeptical Hover Technique" and
    how to tell where a web link really goes?  See:
    https://it.usu.edu/computer-security/computer-security-threats/articleID=23737

________________________________
From: The EDUCAUSE Security Constituent Group Listserv [SECURITY () LISTSERV EDUCAUSE EDU] on behalf of Chris Green 
[CGreen () UTTYLER EDU]
Sent: Friday, July 31, 2015 10:46 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Blocking URLs

All,

We are looking for a cost effective solution to prevent users from accessing sites when they fall for phishing 
attempts. Right now we are blocking IPs for those sites in our firewall, but this is not a great solution for us as we 
don’t want to load up our firewall with these types of rules, and the majority of these sites use dynamic IPs, so it’s 
a temporary fix at best.

I wanted to see if anyone had come up with a solution for this dilemma that doesn’t involve dropping six figures on an 
application firewall.

Thanks,

-C.

Chris Green
Information Security Officer
University of Texas at Tyler