Home page logo

basics logo Security Basics mailing list archives

Re: block internet at two workstations
From: Alaric Darconville <alaric () cowboy net>
Date: Mon, 12 May 2003 11:13:24 -0500 (CDT)

There's really no reason to try it-- the 'http://&apos; part of a URL is just a
protocol identifier, not a hostname.  The HOSTS file is concerned only
with hostnames, not with protocols (it more or less works on the
network layer, not the application layer).  Additionally, in most host
files, the IP is listed first, then the hostname.

You can test this by adding www.microsoft.com
to your HOSTS, then trying 'ping -a www.microsoft.com'.  You'll see that
even with ping, the hostname www.microsoft.com resolves to


On 5/07/2003, Remington Winters <fyreguy () rivetgeek com> wrote:

Havent tested this but you might try adding a line to the host file that


In theory that should direct them to their own machine for any http query
a browser.  Just make sure the user doesnt have access to edit that file.
Or, you could simply remove IE....

-----Original Message-----
From: Tim Laureska [mailto:hometeam () goeaston net]
Sent: Tuesday, May 06, 2003 6:01 AM
To: security-basics
Subject: block internet at two workstations

I'm working with a small (10 user network) with a netgear FVS318
firewall, accessing the internet via cable modem.. The client wants to
block internet access at two workstations.  I don't see anything
available within the firewall documentation/configuration that would
address this.  What is the best and easiest way to do this ...easy and
best may be a contradiction :-)


Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]