+ Post New Thread
Page 1 of 3 123 LastLast
Results 1 to 15 of 37
How do you do....it? Thread, Proxy sites now using 443 in Technical; Not sure if this is a new thing or not - i did a search and couldn't see a mention ...
  1. #1

    Join Date
    Mar 2007
    Posts
    130
    Thank Post
    29
    Thanked 5 Times in 4 Posts
    Rep Power
    17

    Proxy sites now using 443

    Not sure if this is a new thing or not - i did a search and couldn't see a mention of it. Students are now using proxy sites that bypass our ISA server and any of counties restrictions because they are being set to use port 443. It took me a couple of days to work out what was going on in the logs. We have massive amounts of sites with a :443 ending. They can't simply be blocked by domain name as the name seems to be virtually random. It doesnt seem to link anyway if you try and click it.

    Here is an example of whats in our logs

    c-24-17-137-27.hsd1.wa.comcast.net:443

    Any idea's how to get round it?

    Blocking port 443?

    Cheers

  2. #2

    webman's Avatar
    Join Date
    Nov 2005
    Location
    North East England
    Posts
    8,422
    Thank Post
    645
    Thanked 967 Times in 667 Posts
    Blog Entries
    2
    Rep Power
    328

    Re: Proxy sites now using 443

    You could do, but blocking port 443 outbound would also block all secure HTTP connections (https://.......).

  3. #3
    Midget's Avatar
    Join Date
    Oct 2006
    Location
    In a Server Room cutting through a forest of Cat5e
    Posts
    1,298
    Thank Post
    5
    Thanked 59 Times in 49 Posts
    Rep Power
    40

    Re: Proxy sites now using 443

    Block all 443 and then whitelist as required?

  4. #4

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: Proxy sites now using 443

    I concure, that'd be the only way to do it. You can't filter on content on https. As it's encrypted.

  5. #5
    ICTNUT's Avatar
    Join Date
    Jul 2005
    Location
    Hereford
    Posts
    1,419
    Thank Post
    196
    Thanked 249 Times in 122 Posts
    Rep Power
    63

    Re: Proxy sites now using 443

    This is exactly how we do it in ISA 2004 Block all port 443 traffic and then get staff to request whitelist sites.

    Student has no need for access to 443 really, the only ones that I found did need it was our sixth form and access to the UCAS site.

  6. #6

    Join Date
    Mar 2007
    Posts
    130
    Thank Post
    29
    Thanked 5 Times in 4 Posts
    Rep Power
    17

    Re: Proxy sites now using 443

    The blocking :443 and then whitelist by agreement seems like the way forward.

    Do i prepare myself for a lot of abuse from staff that can access their bank details, or more importantly can't buy their DVD's from Play.com?
    :x

  7. #7
    Midget's Avatar
    Join Date
    Oct 2006
    Location
    In a Server Room cutting through a forest of Cat5e
    Posts
    1,298
    Thank Post
    5
    Thanked 59 Times in 49 Posts
    Rep Power
    40

    Re: Proxy sites now using 443

    yes. and then you tell them that it is a security thing and they should not be using the school computers for private affaires

  8. #8

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: Proxy sites now using 443

    Infact, that really should be in your staff AUP anyway.

  9. #9
    mrforgetful's Avatar
    Join Date
    May 2006
    Posts
    1,639
    Thank Post
    7
    Thanked 15 Times in 15 Posts
    Rep Power
    23

    Re: Proxy sites now using 443

    You can set ISA to unpack all the HTTPS traffic to inspect it can't you? It can then either send it unencrypted through school or repack it up after inspection.

  10. #10


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,507
    Thank Post
    871
    Thanked 862 Times in 681 Posts
    Rep Power
    199

    Re: Proxy sites now using 443

    You can man-in-the-middle SSL traffic, yes, but I don't recommend it. It's actually illegal in some countries, and rightly so - it is a gross invasion of privacy, and a security risk.

    The "HTTPS" whitelist appears to be the way forward for most users.

  11. #11
    mrforgetful's Avatar
    Join Date
    May 2006
    Posts
    1,639
    Thank Post
    7
    Thanked 15 Times in 15 Posts
    Rep Power
    23

    Re: Proxy sites now using 443

    On the Microsoft ISA Course it is pushed as a err how do you phrase it, Security Anti-Risk for the exact reasons it would be helpful here - that otherwise anyone could be wrapping anything up in SSL, virus's etc and you'd have no idea.

  12. #12

    Join Date
    Mar 2007
    Posts
    130
    Thank Post
    29
    Thanked 5 Times in 4 Posts
    Rep Power
    17

    Re: Proxy sites now using 443

    Quote Originally Posted by Geoff
    Infact, that really should be in your staff AUP anyway.
    I know. Another Reason the ICT-Co-ordinator should not be responsible for the AUP (imho)

  13. #13

    Join Date
    Jun 2005
    Location
    Preston, Lancashire
    Posts
    634
    Thank Post
    11
    Thanked 6 Times in 6 Posts
    Rep Power
    22

    Re: Proxy sites now using 443

    Quote Originally Posted by Geoff
    I concure, that'd be the only way to do it. You can filter on content on https. As it's encrypted.
    Not wanting to be a pedant (or a pendant as GD would say). I gather that is a typo and that you do indeed mean can't filter on content?

    Cheers,



    Andy

  14. #14

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: Proxy sites now using 443

    indeed I did andy.

  15. #15
    mrforgetful's Avatar
    Join Date
    May 2006
    Posts
    1,639
    Thank Post
    7
    Thanked 15 Times in 15 Posts
    Rep Power
    23

    Re: Proxy sites now using 443

    The argument that was put to the Headmaster at this school was that if the Teachers were expected not to be able to do the odd personal thing online during their free periods or whatever, then they weren't going to do any work at home in their personal time either.



SHARE:
+ Post New Thread
Page 1 of 3 123 LastLast

Similar Threads

  1. Proxy sites
    By whatwherewhen in forum Links
    Replies: 33
    Last Post: 28th October 2008, 04:14 PM
  2. Proxy switch "proxy on" & " proxy off" software
    By GavRob in forum Network and Classroom Management
    Replies: 20
    Last Post: 30th July 2007, 11:05 PM
  3. proxy bypass sites
    By bishopsgarthstockton in forum Links
    Replies: 77
    Last Post: 7th December 2006, 12:29 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •