-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
There have been a number of posts like the one below. I'm not
convinced that making many changes to the squid config is always the
way to do this. This results in lower performance for all.
Why not just publicise far and wide "Downloading .exe and .zip files
without prior permission from <X> is a disciplinary offence". If that
doesn't work, discipline them.
Similarly with porn, I can understand why ISPs are trying to do this,
but there is still a large problem: By censoring some data, you are
taking responsibility for your content, and so are responsible if you
fail to censor some of the data.
In addition, in general (e.g. with commercial organisations), isn't
it better to make a rule forbidding porn etc. rather than spending a
fortune on extra maintenance on keeping ACLs up to date, faster
hardware to cope, or slower performance. If nothing else, it makes
the systems administrators responsible for preventing employees
accessing sites they shouldn't, and so its difficult to deal with
people using workarounds (simply IP addresses in most cases) to beat
the system.
A bit of after-the-fact log processing would catch the offenders red-
handed. We've done that here, and someone was sacked as a result (and
they were copiously warned).
Just my 2 euros (yuck!),
Jonathan L.
Origin, 323 Cambridge Science Park,Cambridge,UK. Tel:+44 (1223)
423355
---[ It is impossible to enjoy idling thoroughly unless one has ]---
------------[ plenty of work to do - Jerome K. Jerome ]-------------
Fight spam! http://spam.abuse.net/ These opinions are all my fault
PLEASE NOTE! I AM CHANGING JOBS ON18th NOV
DON'T BE SURPISED IF MAIL FAILS OR IS IGNORED AFTER THEN
- ----------
From: Squid
Sent: 10 November 1997 21:35
To: squid-users@nlanr.net
Subject: Restricting Users' Access
Greetings,
We are running squid here inside our firewall, and I have everything
working happily. I've decided
to prevent users (outside Info. Systems and Software Development)
from
downloading .zip, .exe, etc... files because we have had so many
problems with users corrupting their own machines.
The problem is management wants to restrict certain other kinds of
content, and while I can do it in access lists
it seems to slow down internet access significantly. Is there
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQA/AwUBNGyU54YLUv2rigzBEQJMFQCgsIp25X/2YhiUAkX193ZAO/ArXswAn1u8
rcyJ6vM7BoqzDlvOd7k2UD/n
=kIEX
-----END PGP SIGNATURE-----
Received on Fri Nov 14 1997 - 10:19:59 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:37:33 MST