PaulDotCom mailing list archives
Re: WAPs that support whitelisting
From: Chris Campbell <chris () ctcampbell com>
Date: Fri, 4 Oct 2013 16:11:07 +0100
That might seem like a good idea, but I suspect the DNS queries leaving a network will exhibit a long tail. Prepare for your non-Alexa logs to be rather unwieldy.
On 3 Oct 2013, at 05:59, Erik Hjelmvik <erik.hjelmvik () gmail com> wrote: Well, it may not be realistic to only let traffic through to whitelisted hosts. But a whitelist of DNS hosts can still be very valuable when doing incident response / network forensics. See this blog post about how the Alexa top 1M list can be leveraged as a whitelist for DNS queries/responses: http://netresec.com/?b=13A66EB /erik 2013/9/13 Chris Campbell <chris () ctcampbell com>:It's worth mentioning that whitelisting doesn't really work for websites, there are invariably too any external resources on a page for you to be able to whitelist them all so that the site works as expected. On 12 Sep 2013, at 23:22, Tim Krabec <tkrabec () gmail com> wrote: DNS No need to over complicate, just use DNSOn Thu, Sep 12, 2013 at 3:10 PM, Larry Petty <lspetty () gmail com> wrote: Is anyone aware of a consumer grade WAP that allows URL whitelisting vs blacklisting? Most of the newer WAPs that I have tested only support blacklisting. I have a situation where I need to allow five websites and blacklist everything else. The issue here is cost. I know that I can use something like pfsense, but for this small project that I am volunteering for, I need a solution that is in the area of $150-$200 each. - Larry _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com-- Tim Krabec tkrabec.com _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Re: WAPs that support whitelisting Erik Hjelmvik (Oct 04)
- Re: WAPs that support whitelisting Chris Campbell (Oct 04)
- Re: WAPs that support whitelisting Larry Petty (Oct 04)