Solved

Internet use monitoring on Windows Server 2003

Posted on 2006-11-09
7
208 Views
Last Modified: 2010-04-10
I have been asked by management to investigate staff Internet use, to make sure no inappropriate sites are visited and that all Internet use is work-related. This will be per-username, as users don't necessarily use the same workstation each time.

Without installing additional software, I'd like a list of every website each user visits (i.e. a separate list for each user) to be stored somewhere accessible to IT administrators (preferably on the server, if this won't slow down the loading of websites), for up to 30 days.

I was initially thinking of maybe redirecting the Temporary Internet Files folder to a location on the server, then using the list of cookies to generate such a list. However, not all sites use cookies, and users are able to delete cookies in Internet Explorer.

[We are running Windows XP Pro on workstations connected to a Windows 2003 file server. I have used the term "Internet" broadly here - I'm referring to http access via Internet Explorer; we can leave Telnet, FTP et al. alone for now!]
0
Comment
Question by:skrysiak
7 Comments
 
LVL 14

Expert Comment

by:Juan Ocasio
ID: 17907562
Why not just look at the log files?
0
 
LVL 26

Expert Comment

by:jar3817
ID: 17907680
"...to make sure no inappropriate sites are visited and that all Internet use is work-related."

Unless you have software in place to filter content, I guarantee that inappropriate sites are being visited.

You could go with some commercial windows-based software to filter your web access like surfcontrol or you can go the free linux route with squid and dansguardian. I use both at the school I work for, surfcontrol is our main filter and if that box were to explode, dansguarian can be used a backup. Both work fairly well for me.
0
 
LVL 3

Expert Comment

by:KVR_Solutions
ID: 17908336
Set up your server as a proxy server. That's the easiest way without purchasing extra hardware or software.

However, this will create a bottleneck and make file access slow.

Another solution would be to google "network monitoring software demo" and try and find a software company that will give you a demo for the 30 days or so. You may be able to milk out an enterprise level solution to get the results you want - for free.

Ira @ KVR

0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 

Author Comment

by:skrysiak
ID: 17920881
I know for sure that not all Internet use is work-related! We're quite laissez-faire at our company, but we need our staff to be using the Internet only as part of their job, and with staff using different workstations throughout the day it is easy to abuse this.

We use a filter already, but they don't always block sites such as email portals based outside of the company, MySpace, and personal blogs. Log files are easy for users to delete, as they are stored locally on the user's workstation.

I had already considered the proxy server idea, but the server already handles a lot of large files over about 100 users, so file access is likely to be slow.

I guess what would be ideal is to automatically copy the contents of Temporary Internet Files or History to a folder per-user on the server where I can manually monitor what's going on. This would work better if it were silent, i.e. so that staff weren't able to see where files are being stored. Does anyone know if this (or something similar) is possible??
0
 
LVL 26

Expert Comment

by:jar3817
ID: 17921383
If you already have a filter, its logs should have all the data you need. What kind of filter is it?
0
 
LVL 1

Accepted Solution

by:
babu_pm earned 200 total points
ID: 17929506
hi, there is a alternate way, that you can restrict the user from visiting unauthorised websites,

first, list down the websites, that essentially need for your company business.

but you must do it for all computers.

the instruction is available in Microsoft Knowledge base,
the Article ID is 267930

hope it will works.
0
 

Author Comment

by:skrysiak
ID: 17937519
Thanks for that, seems to have worked so far. Getting some complaints from the typing pool though - seems they can't live without LiveJournal and Hotmail!
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question