Archives

Best Practices to Monitor Internet Usage

By Atiq, on March 8th, 2012%

One of the best ways to securely provide Internet access to your users is to monitor Internet usage. 

When you monitor Internet usage, you don’t have to parse log files of each and every website your users visit, nor do you have to question them about why they spent twenty minutes updating their status. The right way to monitor Internet usage is to use an Internet monitoring application that can automate all the different aspects of providing Internet access to your users in a safe and secure fashion, and that can enforce your company’s Internet Usage Policy while respecting users’ privacy, and administrators’ limited time.

There are a number of practices small to medium sized business should follow when monitoring Internet usage. The following should be a “must-do”:

1. Establish a clear policy
Every company, no matter how large or small, needs to have a clear and concise policy that addresses what is, and is not, appropriate when employees are using the company’s computer resources. Whether you incorporate Internet access into your Acceptable Use Policy or Information Security Policy, make sure you clearly spell out what is acceptable and what is not.

2. Educate users
Go over this policy with your employees. Do so at new hire orientation, and make it a part of your annual policy training with every user, every year. Keep the policy online where users can get to it, refer to it when appropriate, and consider some form of monthly or quarterly update/reminder so users are fully aware of what is expected.

3. Allow some personal use
You will probably find out quickly that permitting some personal use of the Internet goes a long way towards improving morale. Whether you expect managers to ensure it does not get out of hand, or you use bandwidth or time filters to enforce limits, it’s worth it to permit user some degree of freedom. 
It shows trust, and softens the blow when users must take a call after hours, work late, or on the weekend.

4. Implement Internet monitoring
Deploy an application that can perform Internet monitoring automatically. Using network sniffing or monitoring DNS logs is not a practical or scalable way to monitor Internet usage. Use a server-based application and ensure that all Internet access flows through this system with no way to circumvent it.
If you deploy software to monitor Internet usage on your gateway, there won’t be a practical way to bypass or circumvent it. If you use a separate server and configure your browsers to use it as a proxy, make sure you block outbound web traffic from client subnets so no one can bypass it.

5. Protect users’ privacy
When you monitor Internet usage, you are doing so to protect the company, not to play the role of an Internet cop or to pry into the activities of individual users. Look for Internet monitoring software that can aggregate log data, or otherwise protect individual users’ identities unless there is a reason to investigate a specific user’s actions.

6. Use categories and block phishing, compromised, and suspicious sites
When you monitor Internet usage, use a solution that offers categorized lists of sites you can block based on the company’s policy, and that can also block phishing sites, hacked sites, and sites that are “suspicious”. Perfectly legitimate business websites are compromised every day, and your Internet monitoring software should be able to update and react quickly to new threats.

7. Provide a way to request exceptions
You will find times when a user feels they need to access a blocked site. This could be because of a miscategorization or special need, or simply a misunderstanding. Whatever the reason, provide a way for users to request exceptions so they won’t look for ways to violate the policy.

8. Keep awareness up
Make sure users are aware that the company monitors Internet usage, and why it does so. Send out updates when the Internet monitoring application blocks an infected download, prevents a user from accessing a compromised website, or blocks a phishing victim from visiting a fake site. This not only helps users to understand why the company monitors Internet usage, but can also help them be a little more cautious about what they do at home.

Implement these best practices for monitoring Internet usage within your organization, and you will provide your users with a safe, secure, and effective way to use the Internet, without anyone feeling untrusted or that their privacy has been violated.

This guest post was provided by Casper Manes on behalf of GFI Software Ltd. GFI is a leading software developer that provides a single source for network administrators to address their network security, content security and messaging needs. Learn more about why you need to monitor Internet usage.

All product and company names herein may be trademarks of their respective owners.

Mata description:

The MUST-DOs for organizations who want to monitor Internet usage the right way.

Keywords:

Monitor Internet usage, Internet monitoring software, Internet access, Internet usage policy, Acceptable Use Policy, Information Security, block phishing, hacked sites, bandwidth, DNS logs, privacy.

Leave a comment   Tools   , , , , , , , , , , , , , ,  

Ethical Hacking Tools – Live Hacking CD

By Administrator, on October 3rd, 2010%

LogoI’m glad to share the information about Live hacking CD that is a Linux distribution packaged with collection of amazing tools for ethical hacking and penetration testing, that includes some IPv6 tools. This CD contains the tools and utilities you need to test and hack your own network but using the tools and techniques that more malicious hackers would use.

Live Hacking CD is based on Ubuntu. This Live CD runs directly from the CD and there is no need installation of these tools on your hard disk. You can use the bundled  tools to test, check, ethical hack and perform penetration tests on your network to make sure that it is secure from outside intruders.

As well the standard Linux networking tools like ping, wget, curl, telnet and ssh, the Live Hacking CD has tools for DNS enumeration and reconnaissance as well as utilities for foot-printing, password cracking and network sniffing. It also has programs for spoofing and a set of wireless networking utilities.

This CD is based on open source technology and based on Ubuntu Linux. All the tools included can be freely found in either the Ubuntu repositories on from the Internet. The CD is designed to be a platform to help IT security professionals (as well as those with a general interest in information security) to start, understand and conduct penetration tests and ethical hacking.

The Live Hacking Mini CD is a small Linux distribution designed for ethical hacking. This is compact version of Live Hacking CD contains all necessary tools and utilities but GUI interface is not included in this CD and it’s command based only.

Download Live Hacking CD

  • Live Hacking CD, Version 1.2 Beta August 25, 2010, ISO-MD5 Hash: ded9ce8ee66c7d7e23f535d38a10e91f Download (SourceForge.net)
  • Live Hacking CD, Version 1.1 Full April 27, 2010, ISO-MD5 Hash: dd1d96aec7821e6b623c93a1c9569658 Download (SourceForge.net)
  • Live Hacking Mini CD, Version 1.0 Beta, April 27, ISO-MD5 Hash: dd19a497421f37c508d681586e132c99 Download (SourceForge.net)

More information about Live Hacking CD

Source: Livehacking, alijahangiri

I’m thankful Livehacking and Ali Jahangiri to post the information of amazing tools.

5 comments   Ethical Hacking, Open Source, Security, SysAdmin, Tools   , , , , , , , , , , , , , , , , , , , , , , , , , ,  

Clonezilla – Live & Enterprise

By Atiq, on September 22nd, 2010%

cloneZilla LogoClonezilla is a bootable CD-ROM designed for partition / disk backup and restoration. Unlike SystemRescueCD, Clonezilla Live doesn’t contain an array of utilities, instead, it is a single, focused tool. If you’re interested in simply backing up or restoring whole partitions to or from files, or copying one partition onto another, Clonezilla might be just what you’re looking for.

There are two primary uses for a tool such as this one: backup and subsequent restoration in the event of a mishap or creating a clone of an existing system. So, you could install Linux on one machine, backup the entire disk to a file and then copy the setup to other machines. On the other hand, the partition imaging allows you to do a system backup that can restore a complete system, unlike a traditional backup utility that can only restore your files.

When imaging to a file, the resulting file should be smaller than the entire size of the partition because Clonezilla doesn’t back up the free space. It has support for most of the file systems that you are likely to encounter and it can backup those that it doesn’t recognise, although this results in larger files. When restoring a partition, the hard disk drive must be the same size or larger than the source hard drive, but you can copy a smaller hard drive onto a larger one.

Note that another version of Clonezilla, Clonezilla SE (Server Edition) is designed for restoring partitions to multiple machines via a network for mass cloning. Clonezilla Live, the version that we are discussing here, can restore or backup a single partition over a network or a removable storage device such as a USB stick, or even another local hard drive. A partition image file can’t reside upon a partition that is going to be operated upon.

Now that we’ve determined what Clonezilla is for, how easy is it to use? The answer is that the procedure is very simple. The start up menu is, as you might expect, mainly orientated towards starting the partition copying utility, although it does feature options for network booting, starting FreeDOS or running Memtest. This means that, if armed with only a Clonezilla Live disc, you might find yourself stuck if you needed to edit some files or even edit the partition table of a disk.

Once Clonezilla Live has booted, it presents the user with a text mode, menu driven interface that is used throughout the system. After choosing the keymap and language, one then answers a simple question to determine whether to clone to and from image files or to copy to and from partitions. You select the source and destination partitions from the menu and confirm that you are ready to proceed. After confirmation, Clonezilla churns away for a while, and hey presto, your cloning or imaging operation is complete. It’s as simple as that.

Naturally, the usual warnings about being careful with a tool like this apply.

Clonezilla is designed for one task, and that orientation brings with it the advantage of simplicity of operation. For this reason, it could form the basis of a regular system backup or cloning set up, even though it doesn’t offer any maintenance features outside of the core functionality. The Clonezilla website.

4 comments   Linux, SysAdmin, Tools   , , , , , , , , ,