I have been confronted with a situation kind of like this. My solution for an area high school (especially the ssh tunnel one) was to pretty much block any inside computer behind the firewall to actually pass traffic on any port, and then using squid with conjunction with dansguardian (awesome content filtering program) to pass web traffic.
With the original problem its not much of a solution, but it is quite handy at making sure people arent viewing pages that they shouldnt be. and it eliminates the ssh tunneling ability also. now, i must also say, for the most part, i completely disagree with such measures in the workplace. if you have employees doing such things, after it has been brought up at least once of course as everyone has a tendency to do such things and not think about it.... it goes to show that they are not a very reliable employee. maybe i have a skewed view of how management should deal with their employees but imo it just says more to prove that you do not trust them rather than keeping them from goofing off (as it will happen in some other way) thats my half a cent... On Mon, Oct 27, 2008 at 12:50 PM, Tim O'Guin <[EMAIL PROTECTED]> wrote: > > On Mon, Oct 27, 2008 at 12:30 PM, Douglass Clem <[EMAIL PROTECTED]> > wrote: > > The smartest student here has found that they can open up programs on > > multiple workspaces. This way, they can be playing their little flash > games > > between classes, then minimise Firefox and switch workspaces. As far as I > > know, none of them have ever even heard of / seen the shell, much less > ssh. > > That's what the smartest one wants you to think! ;-) > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en -~----------~----~----~----~------~----~------~--~---
