Educause Security Discussion
mailing list archives
Re: Blocking phishing URL's
From: Josh Flaherty <Josh.Flaherty () INDSTATE EDU>
Date: Mon, 2 Dec 2013 11:07:00 -0500
We don't block URLs but we do manually dns sinkhole some domain names and send them to an information/warning page so
we can track who clicks the links.
Information Technology Security Officer
Office of Information Technology
Indiana State University
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Ullman,
Sent: Monday, December 02, 2013 10:17 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Blocking phishing URL's
I've been asked to investigate what other institutions are doing to block access to URL's at the edge (i.e. block
connections when people click on a URL, despite virtual hosting or fastflux DNS).
Feel free to respond privately. Thanks.
Dr. Catherine J Ullman
Information Security Analyst
Information Security Office
University at Buffalo
cende () buffalo edu<mailto:cende () buffalo edu>