Welcome to the Proxy Update, your source of news and information on Proxies and their role in network security.

Wednesday, February 4, 2009

Security Players Take Aim at Anonymous Proxies

We've discussed anonymous proxies on this blog in the past so it's no surprise that the security vendors are taking a hard look at them as well.

Anonymous proxies are a threat to many organizations because they allow the end-user to bypass any security controls (such as proxies in the organization), and go directly to sites that may contain drive-by malware, viruses, and other threats (not to mention users that are trying to bypass HR or corporate policies on what sites are allowed). Your enterprise proxy should have some way to protect your users from using anonymous proxies. URL filtering is probably not enough by itself as new anonymous proxies are appearing daily, and it's a hard task to keep a list updated.

Make sure your protection uses some type of real-time detection for anonymous proxies, and you won't be regretting the fact that one of your users got to an anonymous proxy and some malicious website.

No comments: