[Fedora] Re: Tracking websites visited

Tim ignored_mailbox at yahoo.com.au
Tue Aug 15 10:47:23 UTC 2006


On Mon, 2006-08-14 at 16:39 -0600, Ashley M. Kirchner wrote:
> This all stemmed because some employees are using their machines to do
> "personal" chit-chat and e-mailing, something upper management wants
> curbed, or at the very least, limited.  Things that immediately came
> up in our meeting was the blocking of Yahoo!, Google, and MSN mail
> during work hours (and possibly unblocked during lunch hours, but
> that's still being discussed.)  While I think it's a bit extreme, they
> sign my paycheque, so I do as I'm told.

You can do that with squid (rules for certain addresses, rules for
different times of the day).  You'd run firewall rules on your gateway
to force all outgoing connections through your proxy, so they couldn't
bypass it.

I tend towards the idea of simply blocking outgoing port 80 to clients,
and configuring clients to use the proxy.  Rather than redirecting
outgoing connections through the proxy surreptitiously ("transparent
proxying", which often seems to create some problems).  That way your
specifically configuring clients to use a proxy.

-- 
(Currently running FC4, in case that's important to the thread)

Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.




More information about the fedora-list mailing list