For the typical IT administrator trying to handle end-users that are trying to get around the corporate proxy, it can be a frustrating and never-ending task. New proxy avoidance sites seem to pop up every day, so it's extremely difficult to keep a blacklist of proxy avoidance sites up to date.
This is one instance where real time dynamic rating can help. Most IP addresses used as a proxy avoidance site have live web pages at that IP address that explain how to use that IP address for proxy avoidance.
These web pages can be dynamically rated by those proxies that have the ability to do real time rating. A good engine should categorize these IP addresses as proxy avoidance sites, a classification that should be blocked in the corporate proxy. As long as you're using transparent proxy, all http should be going through the proxy regardless of the proxy IP addresses used by the end-users and blocked using policy set on the proxy itself to block access to proxy avoidance sites.
For protection against proxy avoidance, do the due diligence and make sure your corporate proxy has the best protection against proxy avoidance sites, and can detect new ones as they become available.
skip to main |
skip to sidebar
Followers
Labels
- anonymous proxy (7)
- application delivery network (3)
- CDN (2)
- cloud computing (13)
- DLP (1)
- Email (3)
- Glossary (31)
- History (3)
- IPv6 (1)
- ipv6 proxy (1)
- News (108)
- Policy (3)
- proxy (1)
- proxy avoidance (1)
- Security (38)
- Tools (4)
- tradeshow (4)
- Vendor (31)
- wan optimization (5)
- web 2.0 (1)
- Web 2.0 (5)
Useful Links
Posts
About Me
- Timothy C.
- Timothy is a former systems and network administrator, having managed systems and networks at AMD, SynOptics, Bay Networks, Network Tools, and Adobe. You can contact Tim at timmie[at]gmail[dot]com
No comments:
Post a Comment