I would have to say your being a little to nice with that solution
. What I recommend is to go the BOFH style way of handling this.
Login through that proxy, and then proceed to send threatening and
vicious email's to the people in upper management, from his email address
of course. I would assume after that his proxy will prompty disappear
as well as his job.
>
>One approach, if there is some sort of policy in place, is to
>monitor the traffic for something incriminating (porn, hate
>sites, whatever is outlined as not being allowed) then contact
>said user and do a little social manipulation to get the job
>done. i.e. "Mr x, our firewall logs show some unacceptable web
>browsing from your user account through the firewall, could you
>stop?" Of course, he will ask all his friends if they are
>browsing porn or looking at 'banned' sites, they might say yes
>(if they are both guilty AND honest), they might say no (either
>because they are dishonest or really are not guilty), either way
>he might stop sharing thier access for fear of heat that will
>come down on HIM. HR can easily be the vehicle, Mr X does not
>need to know that technology staff is aware of his proxy
>activities, this is immaterial, only that doing this for his
>buddies could be bad for HIM. HE just needs to be reminded that
>HE is accountable for the actions of these buddies. That done,
>I would almost BET that the proxy'ing will stop in short order.
>
>ES
>***
>----- Original Message -----
>From: "Isoel Pi�eiro Mart�nez" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Sent: Tuesday, February 20, 2001 10:16 AM
>Subject: Inside protection ?!
>
>
> > I have almost 200 PCs in our LAN, some of wish have full access to the
> > Internet, some other to our Intranet , and some people can go nowhere.
>I'm
> > using Gauntlet 5.5 on NT4.0, SP5.
> > That way, using policies I define what each computer can do. I use DHCP
> > reservation for the people that can go to the Internet.
> > I've found recently one end user computer that have access to the
>Internet
> > running a proxy (Proxy+), and giving access trough it's IP address to
>his
> > friends. Is there some way to prevent this?
> > Thanks in advance.
>_________________________________________________________________
>Get your FREE download of MSN Explorer at http://explorer.msn.com
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
