Re: PLEASE HELP - USENET/Proxy Security Question
From: Thunder$truck (nealbailey_at_hotmail.com)
Date: 05/15/03
- Next message: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Previous message: Lee Higdon: "Re: WARNING - SYMANTEC SCAM??"
- In reply to:(deleted message) Leythos: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Next in thread: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Reply: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Reply: Frode: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 15 May 2003 12:24:22 -0500
Luckily, I spoke with a systems administrator today and got him to allow me
to review the proxy logs for the last week. I told him it was for a
forensics course I'm taking. I spent hours reviewing the logs and it appears
that the routing (for the newsgroups) is done by the Usenet
provider. I saw clearly that my machine name was being logged and the IP
address to the news server was being logged as well but no sight
of the groups I've actually visited. I found the cache shares on the proxy
and it appears to only apply to http-web traffic.
I know there is a higher tier of administrators off-site that monitor
general events for hundreds of outfits but for
now it seems it's all clear. As for SMS, my company does not monitor
employees for the sake of investigating them, the remote control utility
(SMS) is used
for trouble-shooting with end-users.
TS
"Leythos" <void@nowhere.com> wrote in message
news:MPG.192d5baf3d161305989a7f@news-server.columbus.rr.com...
> In article <3ec2ae2a$0$49169$45beb828@newscene.com>,
> santyclaws@northpole.net says...
> > Question: (excuse my ignorance) How does MS Proxy (the WinSock Variety)
log
> > or monitor
> > Usenet activity? My network at work has amazing bandwidth (800KBPS+) and
> > I've begun using
> > it to connect to a third party Usenet provider from my work machine to
> > download mp3's, pictures,
> > and short video clips. My biggest concerns are, While connected to this
> > third party Usenet server
> > is the name of the group I'm connected to being broadcast anywhere? I've
run
> [SNIP]
>
> I've seen a BUNCH of people fired for this type of activity. The first
> thing they will do is determine who's using the pipe and for how long,
> then they will determine where you are connecting to. Once they see that
> you are connecting to a third-party news server, and that you've
> disabled the remote monitoring software, they may well fire you.
>
> MP3/Video, third party server, disabling remote monitoring application
> installed by your company - If it was my shop you would be fired. It's
> clear that you already understand what you are doing is WRONG, so, ask
> yourself if it's worth the price of your job!
>
>
> --
> --
> spamfree999@rrohio.com
> (Remove 999 to reply to me)
- Next message: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Previous message: Lee Higdon: "Re: WARNING - SYMANTEC SCAM??"
- In reply to:(deleted message) Leythos: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Next in thread: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Reply: JacktheRipper: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Reply: Frode: "Re: PLEASE HELP - USENET/Proxy Security Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
