One approach, if there is some sort of policy in place, is to
monitor the traffic for something incriminating (porn, hate
sites, whatever is outlined as not being allowed) then contact
said user and do a little social manipulation to get the job
done. i.e. "Mr x, our firewall logs show some unacceptable web
browsing from your user account through the firewall, could you
stop?" Of course, he will ask all his friends if they are
browsing porn or looking at 'banned' sites, they might say yes
(if they are both guilty AND honest), they might say no (either
because they are dishonest or really are not guilty), either way
he might stop sharing thier access for fear of heat that will
come down on HIM. HR can easily be the vehicle, Mr X does not
need to know that technology staff is aware of his proxy
activities, this is immaterial, only that doing this for his
buddies could be bad for HIM. HE just needs to be reminded that
HE is accountable for the actions of these buddies. That done,
I would almost BET that the proxy'ing will stop in short order.
ES
***
----- Original Message -----
From: "Isoel Pi�eiro Mart�nez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, February 20, 2001 10:16 AM
Subject: Inside protection ?!
> I have almost 200 PCs in our LAN, some of wish have full access to the
> Internet, some other to our Intranet , and some people can go nowhere.
I'm
> using Gauntlet 5.5 on NT4.0, SP5.
> That way, using policies I define what each computer can do. I use DHCP
> reservation for the people that can go to the Internet.
> I've found recently one end user computer that have access to the
Internet
> running a proxy (Proxy+), and giving access trough it's IP address to his
> friends. Is there some way to prevent this?
> Thanks in advance.
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
