Home page logo

basics logo Security Basics mailing list archives

RE: Proxy Port detection
From: "Andrew Shore" <andrew.shore () holistecs com>
Date: Thu, 23 Dec 2004 10:19:13 -0000

One way is to take away the users right to change proxy settings, this
does assume you have win2k/XP on the clients and some form of domain
management (NT policy or AD)

Then remove the connections tab from the users and set the policy to not
use a proxy.

You can do this by hand if you have no policy functions or by using the
ieak to create a new install.



-----Original Message-----
From: John Madden [mailto:chiwawa999 () yahoo com] 
Sent: 22 December 2004 15:45
To: SECURITY-BASICS () securityfocus com
Subject: Proxy Port detection


In our enterprise we have URL filtering capabilities
and we restrict the usual sites (Porn, Sports,
Gambling etc..)

We do not use a proxy, so everyone goes directly to
the internet. 

I believe that some users put in their proxy settings
an anonymous proxy using port 80 (which is obviously
allowed) and in that manner avoid the restriction of
the URL filtering.

First thoughts:

- Blocking all the anonymous proxy is imposible and  
would be a full time job
- The use of a proxy is not an option right now

Is there any way to detect this type of traffic
(HTTP-Proxy) ?

I'm sure someone had this problem before...

Any help would be appreciated.


Do you Yahoo!? 
Yahoo! Mail - Helps protect you from nasty viruses. 

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]