[3429] in WWW Security List Archive
Re: configuring a site to ban porno/violence www access...
daemon@ATHENA.MIT.EDU (Philippe Parmentier)
Fri Nov 1 11:52:01 1996
From: mol@ecmwf.int (Philippe Parmentier)
To: cwlim@ncs.com.sg (Henry Lim Chee Wee)
Date: Fri, 1 Nov 1996 14:43:09 +0000 (GMT)
In-Reply-To: <3279BEEB.15DF@ncs.com.sg> from "Henry Lim Chee Wee" at Nov 1, 96 05:12:11 pm
Errors-To: owner-www-security@ns2.rutgers.edu
In a previous mail , Henry Lim Chee Wee wrote :
>
> I have a question. How well do you manage a "maximum possibly secured
> network" with respect to restricting internal users from accessing
> 'banned sites' from the Internet?
>
One possibility is to use the CERN http daemon (now W3C httpd)
either as a direct httpd or as a proxy, and add as many "fail" directives
as deemed necessary. Wildcards come quite handy there.
The trouble with this scheme, and any other scheme before a standard
is agreed on rating documents (there had been talks about this sometime ago),
is that it will necessarily be incomplete, as it is quite impossible to get
a complete up to date list of sites that you do not want your users to access.
Fail http://*porn*.com/*
Fail http://www.playboy.com/*
etc
--
Philippe Parmentier E-mail : P.Parmentier@ecmwf.int
Snail : ECMWF, Shinfield Park, Reading, Berkshire RG2 9AX, U.K.
