Contradicting my earlier post - One of the most interesting ways I have seen to access websites is via google and it's cache - its amazing what is holds and all on a google URL!
Regards, Mark Parris Base IT Ltd Active Directory Consultancy Tel +44(0)7801 690596 -----Original Message----- From: "Darren Mar-Elia" <[EMAIL PROTECTED]> Date: Mon, 13 Nov 2006 13:48:05 To:<ActiveDir@mail.activedir.org> Subject: RE: [ActiveDir] how to access blocked site. Hey, it *could* be an office in "China" :) In any case, I think you're fighting a losing battle protecting yourself by attempting to control or expecting good behavior from others-- others being defined as people who don't work for/with you. They will always find the information or the means elsewhere if you don't help them. I'm familiar with the notion that the traditional DMZ firewall is going the way of the dodo, but reality is that it is still the main way we protect ourselves from *external* behavior. There's no doubt that internal behavior has become more risky, hence the need for islands of isolation internally, but I still think the reality of someone else's *external* behavior somehow affecting all of us (in the absence of our own stupid behavior, that is) is the exception rather than the rule. In any case, I approach security based on the fact that I can only control what I have control of, and everyone else is implicitly evil (strictly from a security perspective, of course :-)). Darren -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] Sent: Monday, November 13, 2006 12:29 PM To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] how to access blocked site. He didn't ask "from behind the Government controlled firewall in China" he said "from an Office". :-) I'm assuming there's a reasonable tinfoily admin there. And you know.. you can always ask if you want a site unblocked that you think has a reasonable 'business' need? Most of the time we're reasonable people that if you tell us a business need for something, we'll enable it. I was more referring to the statement of does he work on my network. In a bizarre way.. all of us work on each others networks. Your patch policy of your servers, if they are Internet web facing servers, affects little ol' me. My XP workstations are my front line... and where they surf and what happens when they do impacts me. The Future of Secure Access : The perimeter isn't what it used to be: http://blogs.technet.com/futuresecurity/archive/2006/11/12/the-perimeter-isn -t-what-it-used-to-be.aspx (true story... I set up firewall blocking with a error page that would indicate that the person in the office was "busted" and to test it out I put Victoria's Secret.com on there.... then added the additional 'banned' pages and then forgot that I left that "banned" site on... around Valentine's of the following year I was asked why I considered that page inappropriate. Oops. :-) So I re-enabled it. We're an open org here.. the sites I ban are those I've had issues with... myspace.com for example... when a Secretary abused her Internet access.... inside a firm if there are sites being banned....typically there's a reason. If you think you have a business justification for a web site, ask. If you are in China or insert Country of your choice, that's a tougher call.... but if he was I'd strongly recommend that he not ask about it on a public listserve that could be easily found later. Darren Mar-Elia wrote: > Hmm. That's a dubious stretch. Does that mean all those folks in China > that find ways to bypass their government-controlled proxy are > endangering us all and should be stopped? There may be lots of > legitimate reasons why someone needs to do this. I don't think it > should be assumed that suddenly we are all at risk. > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Susan > Bradley, CPA aka Ebitz - SBS Rocks [MVP] > Sent: Monday, November 13, 2006 8:29 AM > To: ActiveDir@mail.activedir.org > Subject: Re: [ActiveDir] how to access blocked site. > > He's on the Internet isn't he? If he infects/nails his firm, his firm > in turn could be a bot that attacks us all, right? > > We're truly all on the same 'party line' here. We all share the > Internet, so yeah... we all have the responsibility of doing what we > can to keep the bad guys from turning us into bad guys. > > Ramon Linan wrote: > >> LOL, Susan does he really work in your office? >> >> -----Original Message----- >> From: [EMAIL PROTECTED] >> [mailto:[EMAIL PROTECTED] On Behalf Of Susan >> Bradley, CPA aka Ebitz - SBS Rocks [MVP] >> Sent: Monday, November 13, 2006 9:50 AM >> To: ActiveDir@mail.activedir.org >> Subject: Re: [ActiveDir] how to access blocked site. >> >> As an admin here.... >> >> You do know I could fire your assets if you do this at my office? >> >> You are introducing risks that as an employee, you don't have the >> right to do at a firm. There's a reason us annoying admins block >> this >> > stuff. > >> Introduce risks at home please, and not on my watch, okay? >> >> Ajay Kumar wrote: >> >> >>> Hi all, >>> >>> >>> >>> It could be wrong question but I want to know >>> >>> about how to acess the restricted or blocked site, which is access >>> denied from office. >>> >>> I know some tools work like K-PROXY, but it woks on some internet >>> >>> >> site. >> >> >>> So please suggest me how to access blocked site. >>> >>> which can work well. >>> >>> >>> Thanks & Regards, >>> Ajay pardeshi >>> >>> >> List info : http://www.activedir.org/List.aspx >> List FAQ : http://www.activedir.org/ListFAQ.aspx >> List archive: http://www.mail-archive.com/activedir@mail.activedir.org/ >> List info : http://www.activedir.org/List.aspx >> List FAQ : http://www.activedir.org/ListFAQ.aspx >> List archive: >> http://www.mail-archive.com/activedir@mail.activedir.org/ >> >> >> > > -- > Letting your vendors set your risk analysis these days? > http://www.threatcode.com > > If you are a SBSer and you don't subscribe to the SBS Blog... man ... > I will hunt you down... > http://blogs.technet.com/sbs > > List info : http://www.activedir.org/List.aspx > List FAQ : http://www.activedir.org/ListFAQ.aspx > List archive: > http://www.mail-archive.com/activedir@mail.activedir.org/ > > List info : http://www.activedir.org/List.aspx > List FAQ : http://www.activedir.org/ListFAQ.aspx > List archive: > http://www.mail-archive.com/activedir@mail.activedir.org/ > > -- Letting your vendors set your risk analysis these days? http://www.threatcode.com If you are a SBSer and you don't subscribe to the SBS Blog... man ... I will hunt you down... http://blogs.technet.com/sbs List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir@mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir@mail.activedir.org/