[Esa-l] Anyone have a comprehensive webmail URI list?
Karl.Dunn at vmic.com
Karl.Dunn at vmic.com
Thu Aug 23 06:54:33 PDT 2001
I meant the anonymizing sites, like SafeWeb, when I said "redirectors".
Most of them use https, so if you block that, you block the anonymizers.
It only takes one slightly savvy luser to spread the word to the rest of
them. They probably already know about this trick.
Karl Dunn (KLD13)
VMIC
12090 South Memorial Parkway
Huntsville AL USA 35803
VOICE: (256) 382-8211 or (800) 322-3616
FAX: (256) 650-5472 or (256) 882-0859
On Thu, 23 Aug 2001, Murray Crane wrote:
> On Thu, 23 Aug 2001 08:34:24 -0500 (CDT), Karl.Dunn at vmic.com wrote:
>
> >You will probably have to block https too, at least for all sites except
> >for a chosen few with which you do e-business. If you don't, lusers can
> >use redirectors like SafeWeb to download/upload stuff anyway. Ours do,
> >and I have been directed not to block https at all. So far, nothing has
> >got loose locally, but it's just a matter of time... :-(
>
> John can correct me if I've got this wrong, but the instructions he posted do a
> regex against the URI, so as long as the URI isn't encrypted it'll get blocked by the
> ACL. Thank God the lUsers here are for the most part too stupid to user an anonymising
> service. I can see that being the next thing to get blocked if they do figure it out...
>
> Murray Crane
> Network Systems Administrator
> Longbridge International Plc
More information about the esd-l
mailing list