[NCSA-discuss] windows firewall question
Shane O.
shaneodonnell at gmail.com
Thu Dec 15 11:32:33 EST 2011
You could also go decidedly lower-tech and disable DNS resolution, adding
static entries for the "good" sites in the local "hosts" file
(c:\windows\system32\drivers\etc\hosts, or something like that...).
That would keep most of your casual surfer crowd in line...
Shane O.
On Thu, Dec 15, 2011 at 11:16 AM, Marcos Santana <marcossantana1 at hotmail.com
> wrote:
>
> If you're looking for software to install to allow just certain websites,
> you can try something like Net Nanny.
>
>
> > Date: Thu, 15 Dec 2011 10:52:21 -0500
> > From: johjeff at gmail.com
> > To: ncsa-discussion at ncsysadmin.org
> > Subject: Re: [NCSA-discuss] windows firewall question
> >
> > Most security sites provide this feature now a days. Search for Windows
> > white list black list security our something along those lines. Of
> course,
> > the employee would likely have to use a restricted user account,
> otherwise
> > they could easily bypass software on the local machine. Ideally you
> should
> > provide a external proxy server or firewall to provide this function.
> >
> > Jeffrey C. Johnson, EMCPA, NCDA, BCFA, BCFP, BCFD Services Delivery
> > Consultant Brocade 130 Holger Way, San Jose, CA 95134 M. +1.919.355.UNIX
> > (8649)
> > On Dec 14, 2011 10:09 PM, "Joseph Mack NA3T" <jmack at wm7d.net> wrote:
> >
> > > A friend has a shop that's not particularly busy and the new person at
> the
> > > counter seems to have used the PoS machine (WinXP) to surf the
> internet and
> > > download viruses while waiting for customers to buy something. The
> viruses
> > > stop the PoS machine from doing its PoS work which is distressing to my
> > > friend. Firing the clerk isn't an option apparently.
> > >
> > > The WinXP machine is connected via a DSL box to the internet. The
> machine
> > > only has to connect to the sites of a few (say 10) vendors to handle
> > > ordering. A possible solution would be to setup a firewall that only
> > > allowed access to the vendor sites, with new sites being added on in a
> gui.
> > > I'd expected ZoneAlarm could do this, but on checking with their
> technical
> > > people (via a chat room), I found that ZoneAlarm doesn't do this.
> > >
> > > Any windows firewalls that work the way I want?
> > >
> > > Any other ideas?
> > >
> > > Thanks Joe
> > > --
> > > Joseph Mack NA3T EME(B,D), FM05lw North Carolina
> > > jmack (at) wm7d (dot) net - azimuthal equidistant map
> > > generator at http://www.wm7d.net/azproj.**shtml<
> http://www.wm7d.net/azproj.shtml>
> > > Homepage http://www.austintek.com/ It's GNU/Linux!
> > > ______________________________**_________________
> > > ncsa-discussion mailing list
> > > ncsa-discussion at ncsysadmin.org
> > > http://www.ncsysadmin.org/**mailman/listinfo/ncsa-**discussion<
> http://www.ncsysadmin.org/mailman/listinfo/ncsa-discussion>
> > >
> > _______________________________________________
> > ncsa-discussion mailing list
> > ncsa-discussion at ncsysadmin.org
> > http://www.ncsysadmin.org/mailman/listinfo/ncsa-discussion
>
> _______________________________________________
> ncsa-discussion mailing list
> ncsa-discussion at ncsysadmin.org
> http://www.ncsysadmin.org/mailman/listinfo/ncsa-discussion
>
More information about the ncsa-discussion
mailing list