Educause Security Discussion
mailing list archives
Re: Blocking phishing URL's
From: Michael Benedetto <mbenedetto () AMNH ORG>
Date: Wed, 4 Dec 2013 17:14:36 +0000
We use a combination of OpenDNS Umbrella and Threatstop as well as some internal filtering to accomplish this.
American Museum of Natural History
Sent from my iPhone
On Dec 2, 2013, at 11:07 AM, "Josh Flaherty" <Josh.Flaherty () INDSTATE EDU<mailto:Josh.Flaherty () INDSTATE EDU>>
We don’t block URLs but we do manually dns sinkhole some domain names and send them to an information/warning page so
we can track who clicks the links.
Information Technology Security Officer
Office of Information Technology
Indiana State University
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Ullman,
Sent: Monday, December 02, 2013 10:17 AM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Blocking phishing URL's
I’ve been asked to investigate what other institutions are doing to block access to URL’s at the edge (i.e. block
connections when people click on a URL, despite virtual hosting or fastflux DNS).
Feel free to respond privately. Thanks.
Dr. Catherine J Ullman
Information Security Analyst
Information Security Office
University at Buffalo
cende () buffalo edu<mailto:cende () buffalo edu>