Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Blocking IM (MSN, Yahoo Messenger) using Squid

Posted on 2004-09-01
3
Medium Priority
?
25,543 Views
Last Modified: 2013-11-22
I have Squid running and I am looking for a way to block Yahoo and MSN messenger. My search of the Internet has not come up with any working solutions.

Has anybody been able to successfully block these IM programs using Squid?

Setup:

Squid 2.4 Stable6
OS: FreeBSD 4.9

Thanks in advance
0
Comment
Question by:cchinoy
3 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 11975468
1) Install all messengers you can imagine - Yahoo! , MSN , AIM , ICQ and Trillian
2) Install packet sniffer like ethereal on workstation
3) now try running all messengers one at a time
4) now look for common signs on how to block them

For example AIM uses host login.oscar.aol.com
MSN Messenger uses MIME type containing "X-MSN-Messenger" string

Same applies to digital media players, spywares, viruses etc.

Never try to use these programs when they are blocked for common users.
0
 

Author Comment

by:cchinoy
ID: 12102723
Thank you I will give this a try
0
 
LVL 2

Accepted Solution

by:
jdw_2004 earned 1500 total points
ID: 12132638
These applications use ports other than HTTP.  In fact, these programs are particularly tenacious in their efforts to circumvent restrictions.  Also, for what web accesses they do perform, instant messaging clients may or may not honor the system's proxy configuration.  

Thus, you will not be able to effectively block IM programs using squid, without assistance from a firewall or router.  Even then, eternal vigilance will be required as these programs find new ways to weasel through with each new release.

The following page is very helpful:

http://nscsysop.hypermart.net/no_chat.html

This previous EE question may also be instructive on firewall blocking, if you want to go that route:

http://www.experts-exchange.com/Security/Firewalls/Q_20610865.html

0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello fellow BSD lovers, I've created a patch process for patching openjdk6 for BSD (FreeBSD specifically), although I tried to keep all BSD versions in mind when creating my patch. Welcome to OpenJDK6 on BSD First let me start with a little …
When you do backups in the Solaris Operating System, the file system must be inactive. Otherwise, the output may be inconsistent. A file system is inactive when it's unmounted or it's write-locked by the operating system. Although the fssnap utility…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

879 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question