• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 414
  • Last Modified:

Internet misusage

Using Web Spy we monitoring our organizational web usage.  We use BT ISA filter for most content blocking and block all incoming ports except 80, 443 and 25.  The problem is everyday it seems users are able to find new some new chat mechanism.  The latest was phonefox and e-messenger.net.  Chatting is in clear violation of policy.  All users have signed computer user agreements.  Short of sending out termination letters to every employee that violates policy is there another way to win the battle of these port 80 chatters?
0
nikkgilbert
Asked:
nikkgilbert
1 Solution
 
CrazyOneCommented:
Port 80 is somewhat univeral. IE needs it. Ummm if you are going to curtail chat useage then use cameras to look each individual person or a key logger.

***Edited Comment-WesLennon - By Request***
0
 
webtransCommented:
try this product
should very much help
http://www.akonix.com/products/l7_isa.asp
0
 
nikkgilbertAuthor Commented:
Perhaps I should have been a little bit more detailed.  As my organization is a US military base outside the US.  Its a security risk, plain and simple to answer your second comment.
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
webtransCommented:
well best practice would be
1-installing the Content filtering Plugin
2-watching up on the website vistied traffic report on a daily basis and adding as u walk through
other than that i see u have a very limited way of handling it

OR

u can close all sites through the CF plugin to ISA
and ask them to ask u on a one by one basis to open needed websites for there work
:D
that should pretty much do it i guess

0
 
bloemkool1980Commented:
Perhaps I should have been a little bit more detailed.  As my organization is a US military base outside the US.  Its a security risk, plain and simple to answer your second comment.
By saying this you disclosed probably more than your users did.
If you like to restrict any chat thing use a url filter such as websense. Disabled the CONNECT method of your proxy. If you like a very restrictive approach you should create a whitelist which are the only websites that are allowed.
0
 
gemchestCommented:
Hi nikkgibert,

To be frank it's very hard to curtail port 80 chat problem. Of course, you can do a complete filtering by installing plug-in. However that might (or might not) slow down all the connections considerably and will be using huge resources to do so. As an millitary organisation i suggest you should educate your employees and instill strict discipline on the way they handle the systems. It's a millitary organisation after all and if it requires such strict security clearance (no chatting programs) then I really think the most effective way is to educate your men.


regards,
Luis
0
 
bloemkool1980Commented:
for such a question there is no straight forward technical answer.
The only thing you can do is like said before
URL filter or create a whitelist.
Disable Connect method. on your proxy
And this is civilian life we are free to express our opinions sorry m8
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now