[H-GEN] Restricting web site access
Willie Yeo
Willie.Yeow at aapt.com.au
Mon Mar 28 16:52:41 EST 2005
Depending on complexity, are the machines being shared or are they permanently static (to a particular person) ?
Years ago, when I ran a private college's network, I deployed Squid Proxy Server (on Red Hat, but you can use ANY Linux favour), I also put on SquidGuard. However, due to the nature that it is on entire computer labs, it is easier to filter on "keywords and domain names and wildcard URLs".
The solution was adapted by a small branch CQU uni campus, and then found it's way to Bond University. (They probably don't use it now :p)
It's an Open Sourced solution, i.e. costs nothing (except for time, labour and equipment).
If you are looking something like Novell Netware's BorderManager (per-user), I am not sure what is out there that can handle like them.
Regards.
-----Original Message-----
From: general-bounces at lists.humbug.org.au on behalf of David Duffy
Sent: Mon 28/03/2005 10:48 AM
To: Humbug (General)
Cc:
Subject: [H-GEN] Restricting web site access
[ Humbug *General* list - semi-serious discussions about Humbug and ]
[ Unix-related topics. Posts from non-subscribed addresses will vanish. ]
Hi everyone,
What is the best way to restrict web site access on a "per user"
basis with Windows XP machines going through a Debian proxy?
The browsers used are both IE and Firefox. IE can have settings
to approve or block certain sites but Firefox doesn't seem to.
Googling gives the impression that the Debian box is suitable for
this for of use but I'm not sure of how to start off. Blocking based
on the domain name may be usable but can this be done per user?
Another thing I'm considering is content based internet filtering.
Does anyone have any pointers on this? Something that's proxy
based would be good so that it can't be disabled by Win users.
David...
_______________________________________________
General mailing list
General at lists.humbug.org.au
http://lists.humbug.org.au/cgi-bin/mailman/listinfo/general
This communication, including any attachments, is confidential. If
you are not the intended recipient, you should not read it - please
contact me immediately, destroy it, and do not copy or use any part of
this communication or disclose anything about it.
More information about the General
mailing list