According to [EMAIL PROTECTED]: > > Attempting to salvage a little usefulness from this obvious >*TROLL*.... >
Yah - this may have been a troll but the attitude is quite prevalent amongst the people behind the firewalls. They view the firewall as an obstacle to their activities to be routed around if they can. Unfortunately, protocols like SOAP are being pushed to overload the HTTP with other functionality with a justification based, partly, on the fact that firewalls block arbitrary traffic. Couple that with the attitude that company provided services are a "free lunch" it is amazing what some people will get up to - even if you do log their activities in a manner that can easily tie their login name to visits to questionable sites. Here, our fireall blocks everything apart from defined services and those services are proxied. Our users activities (web surfing mostly) are logged and we publish on our intranet the top 10 sites by hit and download per month with usernames responsible. We provide reports on request to the managers of the people as required. In this we try to avoid being the police and make our managers manage their own people which, it seems, is a radical concept to some. -- =============================================================================== Brett Lymn, Computer Systems Administrator, BAE SYSTEMS =============================================================================== _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
