[CLUE-Tech] Activity monitoring

Dave Hahh dhahn at techangle.com
Mon Oct 13 09:42:27 MDT 2003 

Squid with acls may do what you need.  It will allow you to designate IP 
address groups, no necessarily strict subnets, and apply access (web at 
least) for those users.  http://www.squid-cache.org.  If not, the 
SquidGuard software (link from the Squid site) may do it as well.

-d

Russell Glissmann wrote:

>I agree that policy is the first thing.  However, in this particular
>case the facility is 24 hour.  So policy can't do much when there is
>lack of supervision.  To make matters worse, we are talking about a
>local government facility.  Personally I really detest the idea of
>monitoring, however this is being done at the request of the client.
>Lets think about another tact, that of blocking access.  Currently I've
>been using McAfee Firewall on each workstation.  However, employees have
>figured out that they can disable the firewall, go out and play, then
>re-enable the firewall so that it looks as though they haven't been
>using the 'net.  The only reason I can' just shut off the network in
>general is due to a network application.  To make matters worse, in the
>same facility some employees have a need for Internet access, and to the
>same network application.  To my mind this eliminates sub-netting as
>that would block access to the Internet, and allow access to the
>application, but then the employees that should have access would also
>be blocked.  Is there a way to block certain addresses from access,
>while allowing others?
>
>Thanks!
>Russ
>On Mon, 2003-10-13 at 08:49, black at galaxy.silvren.com wrote:
>  
>
>>While cases can be made to monitor employees, it's usually best to start
>>off with a HR policy telling people what they should and shouldn't be
>>doing. That's where I'd start. If there's already a policy like that in
>>place, then it seems reasonable to monitor if there's a specific reason.
>>
>>
>>On Sun, 12 Oct 2003, Russell Glissmann wrote:
>>
>>    
>>
>>>Has anyone any experience in logging Internet activity, especially from
>>>certain workstations?  If so, what is required both hardware wise as
>>>well as software?  The workstations are Windows 2k Pro (you didn't want
>>>this to be easy did you?).  Currently this client is not running a
>>>firewall or proxy server, but that is something that is in the works.
>>>Any idea is appreciated, ideas that are doable are even better!  :-)
>>>
>>>TIA
>>>Russ
>>>--
>>>Russell Glissmann <rglissmann at rfgsolutions.com>
>>>
>>>_______________________________________________
>>>CLUE-Tech mailing list
>>>Post messages to: CLUE-Tech at clue.denver.co.us
>>>Unsubscribe or manage your options: http://clue.denver.co.us/mailman/listinfo/clue-tech
>>>
>>>      
>>>
>>_______________________________________________
>>CLUE-Tech mailing list
>>Post messages to: CLUE-Tech at clue.denver.co.us
>>Unsubscribe or manage your options: http://clue.denver.co.us/mailman/listinfo/clue-tech
>>    
>>

More information about the clue-tech mailing list