Home page logo
/

basics logo Security Basics mailing list archives

Re: Spying in a corporate environment
From: Col <colweb () gmail com>
Date: Wed, 21 Nov 2007 07:57:14 +0000

On Nov 21, 2007 7:29 AM, Emilio Casbas <ecasbas () s21sec com> wrote:
Col escribió:
Hi everyone,

In my job we have to investigate people on our network for various reasons.

Are the people awareness they are being investigated?

Well they signed the computer policy, and they also click "OK" on the
Legal Notice on their machines which tells them they are being
monitored.

Increasingly I am finding I need some sort of tool to help me out.
Preferably something that I can run on a server, point at a client or
a user account and have it monitor that user/machine activity over a
period of time.

The best tool would have these sorts of features:-

Audit log - everything the user does (shared drives, applications, web
sites visited)

samba utils to scan the machine
squid proxy as the only way to surf internet.

We have about 20 proxies globally, users have admin rights and can
surf on their home internet. So a proxy is not the solution.


Regards.
Emilio.

That Activity Monitor from Softactivity.com is looking pretty nice at
the moment.

Cheers,

Colin.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]